R&D Automate Security & Compliance Checks

Introduce automated security and compliance validation across CI/CD pipelines, leveraging tools like Semgrep, Checkov, and license scanners.

Acceptance Criteria

- Document findings

- Maybe: Integrate SAST and license checks in CI

- Document what each tool checks

- Fail pipeline on high-risk issues