build: add smegrep action to check audit

Author: MyunghoBae

.github/workflows/audit-check.yml

@@ -33,3 +33,15 @@ jobs:
                   SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
               with:
                   args: --severity-threshold=high
+
+    semgrep-scanning:
+        name: Semgrep Scanning
+        runs-on: ubuntu-latest
+        container:
+            image: semgrep/semgrep
+        if: (github.actor != 'dependabot[bot]')
+        steps:
+            - uses: actions/checkout@v4
+            - run: semgrep ci
+              env:
+                  SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}