Add Azure Security for DevOps to CI Pipeline (#557)

* Update azure-dev-validation.yaml

* Update azure-dev-validation.yaml

Author: tonybaloney

.github/workflows/azure-dev-validation.yaml

@@ -17,3 +17,15 @@ jobs:
         uses: azure/CLI@v1
         with:
           inlineScript: az config set bicep.use_binary_from_path=false && az bicep build -f infra/main.bicep --stdout
+          
+      - name: Run Microsoft Security DevOps Analysis
+        uses: microsoft/security-devops-action@preview
+        id: msdo
+        continue-on-error: true
+        with:
+          tools: templateanalyzer
+
+      - name: Upload alerts to Security tab
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: ${{ steps.msdo.outputs.sarifFile }}