Create trufflehog.yml

Adding trufflehog to scan the repository for secrets on all PRs.

.github/workflows/trufflehog.yml

@@ -0,0 +1,27 @@
+name: TruffleHog
+on: [pull_request]
+jobs:
+  TruffleHog:
+    name: TruffleHog
+    runs-on: ubuntu-latest
+    defaults:
+      run:
+        shell: bash
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
+
+      - name: TruffleHog OSS
+        id: trufflehog
+        uses: trufflesecurity/trufflehog@main
+        continue-on-error: true
+        with:
+          path: ./
+          base: "${{ github.event.repository.default_branch }}"
+          head: HEAD
+#          extra_args: --debug
+      - name: Scan Results Status
+        if: steps.trufflehog.outcome == 'failure'
+        run: exit 1