Added basic setup #2

	name: Source Composition Analysis Scan
	on:
	pull_request:
	types: [opened, synchronize, reopened]
	jobs:
	security-sca:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@master

	- name: Setup pnpm
	uses: pnpm/action-setup@v4
	with:
	version: 10

	- name: Set up Node.js
	uses: actions/setup-node@v4
	with:
	node-version: '22.x'
	cache: 'pnpm'

	- name: Install dependencies
	run: pnpm install --frozen-lockfile

	- name: Run Snyk to check for vulnerabilities
	uses: snyk/actions/node@master
	env:
	SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
	with:
	args: --all-projects --fail-on=all

Provide feedback