chore: sync security config files

[security-config-sync]

Summary

This PR syncs security scanning configuration files from the central security-config repository, managed by the @opendatahub-io/odh-platform-security team.

Files

File	Status
semgrep.yaml	Added
.gitleaksignore	Added
.gitleaks.toml	Updated

What does this mean for your team?

• No action required from reviewers beyond merging this PR
• These files are protected by an org-level push ruleset — they cannot be modified directly in this repo
• Future updates will be synced automatically via PRs from the security-config repo
• CodeRabbit and Semgrep will use these configs when reviewing PRs on this repo

For questions or customization requests, open an issue on opendatahub-io/security-config.

[ugiordan]

Closing stale sync PR. A clean sync will be triggered once the configuration is finalized.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign hbelmiro for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign hbelmiro for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment