Add Checkov IaC security scan

Enhance build security by integrating Checkov IaC static code analysis
tool.

.github/workflows/checkov.yml

@@ -0,0 +1,23 @@
+name: Checkov
+
+on:
+  #pull_request:
+  push:
+  #  branches:
+  #    - main
+
+permissions: read-all
+
+jobs:
+  checkov:
+    name: Run Checkov for IaC Security Analysis
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check out code
+        uses: actions/checkout@v3
+
+      - name: Run Checkov with GitHub Action
+        uses: bridgecrewio/checkov-action@master
+        with:
+          framework: dockerfile
+          quiet: true