docs: add dependabot and devsecops workflows (#225)

Author: wbruno

.github/dependabot.yml

@@ -0,0 +1,21 @@
+version: 2
+updates:
+  - package-ecosystem: npm
+    directory: "/"
+    schedule:
+      interval: weekly
+      day: "monday"
+    open-pull-requests-limit: 10
+    versioning-strategy: increase
+    labels:
+      - "npm dependencies"
+    groups:
+      non-major:
+        update-types:
+        - "minor"
+        - "patch"
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "monday"

.github/workflows/devsecops.yml

@@ -0,0 +1,12 @@
+run-name: DevSecOps
+name: DevSecOps
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+  pull_request:
+    types: [opened, synchronize, reopened]
+jobs:
+  devsecops:
+    uses: grupoboticario/actions-devsecops-workflows/.github/workflows/devsecops.yml@v0