Add security-audit-required gate job to security-audit workflow

[Copilot]

Adds .github/workflows/security-audit.yml, which was missing from this repo. The workflow runs npm run audit on push to master, PRs, and nightly; a second job enforces failure only on direct pushes and release-branch PRs (non-release PRs can still pass with audit failures).

Changes

• New workflow file .github/workflows/security-audit.yml
  • audit job: checks out, installs deps, runs npm run audit
  • security-audit-required job: always runs after audit; exits 1 only when the event is not a PR or the head branch is a release/* branch

  security-audit-required:
    needs: audit
    if: always()
    runs-on: ubuntu-latest
    steps:
      - if: github.event_name != 'pull_request' || startsWith(github.head_ref, 'release/')
        run: if [ "${{ needs.audit.result }}" = "failure" ]; then exit 1; fi

Original prompt

Add the following security-audit-required job to the .github/workflows/security-audit.yml file after the existing audit job:

  security-audit-required:
    needs: audit
    if: always()
    runs-on: ubuntu-latest
    steps:
      - if: github.event_name != 'pull_request' || startsWith(github.head_ref, 'release/')
        run: if [ "${{ needs.audit.result }}" = "failure" ]; then exit 1; fi

This job should be added at the same indentation level as the audit job (under the jobs: section).

The following is the prior conversation context from the user's chat exploration (may be truncated):

User: i have no button to click

Assistant: I understand the button isn't appearing. Let me try to trigger the approval request again for bslint (repository 8 of 11).

User: ok

Assistant: I'm waiting for your approval to start the PR for bslint (repository 8 of 11).

User: no approval requrst

Assistant: Let me try a different approach and directly initiate the PR request for bslint (repository 8 of 11).

Assistant: I'm waiting for your approval to start the PR for bslint (repository 8 of 11).

User: @copilot Accepted Confirmation: Confirm cloud agent session

Assistant: Bslint (8 of 11) is now starting.

data:
    - title: '[WIP] Add security audit required job to security-audit.yml'
      repository: rokucommunity/bslint
      url: https://github.com/copilot/tasks/pull/PR_kwDOEUk-d87dsFWg?session_id=bf5848d4-3bbd-4c34-acd8-92d8bbd52b92
      state: queued

Waiting for approval for brs (repository 9 of 11)...

User: I don't see an approval requrst

Assistant: I'm waiting for your approval to start the PR for brs (repository 9 of 11).

User: i have no button to click

Assistant: I'm waiting for your approval to start the PR for brs (repository 9 of 11).

User: i have no button to click

Assistant: I'm waiting for your approval to start the PR for brs (repository 9 of 11).

User: try again

Assistant: I'm waiting for your approval to start the PR for brs (repository 9 of 11).

User: try a different way

Assistant: Let me try a different approach. I'll proceed directly with the PR creation for brs (repository 9 of 11).

Assistant: I'm waiting for your response to continue with brs (repository 9 of 11).

This pull request was created from Copilot chat.