Add tfsec commenter GitHub actions

* Runs tfsec on PR, and comments any failures

Author: Stretch96

.github/workflows/main.yml

@@ -55,3 +55,14 @@ jobs:
           output-file: README.md
           output-method: inject
           fail-on-diff: true
+  tfsec:
+    name: tfsec
+    needs: validate-terraform
+    runs-on: ubuntu-latest
+    steps:
+      - name: Clone repo
+        uses: actions/checkout@master
+      - name: tfsec
+        uses: aquasecurity/[email protected]
+        with:
+          github_token: ${{ github.token }}