Add compatibility check workflow

[s35-lee]

Changes in this pull request

I have added a new Github Action workflow to perform conpatibility checks between the base branch and the pull request branch.

Related Issue: #1911

I'm aware there was earlier work in #513 .
My understanding is that the previous approach aimed for a much stricter comparison, including format-level checks with multiple asset types.
This PR intentionally takes a lighter approach. Instead of enforcing exact snapshot matches, it uses c2patool to run practical forward and backward compatibility checks.

One possible concern with the previous PR is that the workflow may fail if compatibility is broken due to spec changes.
That is also part of the motivation for this work.
If a spec or implementation change causes compatibility to break, that should be handled as a critical event.
And this is need to be detected as early as possible, before it impacts downstream solutions built on this repository.

There are two behavior for compatibility.

• Forward compatibility: base signs a sample asset, PR reads it.
• Backward compatibility: PR signs a sample asset, base reads it.

This PR uses trigger conditions similar to tier-1a, but I'm happy to adjust if needed.

Checklist

• This PR represents a single feature, fix, or change.
• All applicable changes have been documented.
• Any TO DO items (or similar) have been entered as GitHub issues and the link to that issue has been included in a comment.