Add a workflow file that runs a Dependabot scan on the last published version of the action

Dependabot updates the dependencies in this repo, but doesn't check what version is in 'production' (released). Maybe we need to run a scan for each released version, but lets start with a scheduled run on the last version so that we can alert early on if needed. 