security scanning

[pelikhan]

GitHub recently added secret scanning to its MCP. A secret scan as part of the validation would be a good layer of security.

[davidslater]

https://github.blog/changelog/2026-05-05-dependency-scanning-with-github-mcp-server-is-in-public-preview/
https://github.blog/changelog/2026-05-05-secret-scanning-with-github-mcp-server-is-now-generally-available/