chore: update security insights configuration and clean up formatting

[DariuszPorowski]

Description

Validated with CUE and cleaned up based on the results.

Type of change

• This pull request is a minor refactor, code cleanup, test improvement, or other maintenance task and doesn't change the functionality of Radius (issue link optional).

Contributor checklist

Please verify that the PR meets the following requirements, where applicable:

• An overview of proposed schema changes is included in a linked GitHub issue.
  • Yes
  • Not applicable
• A design document PR is created in the design-notes repository, if new APIs are being introduced.
  • Yes
  • Not applicable
• The design document has been reviewed and approved by Radius maintainers/approvers.
  • Yes
  • Not applicable
• A PR for the samples repository is created, if existing samples are affected by the changes in this PR.
  • Yes
  • Not applicable
• A PR for the documentation repository is created, if the changes in this PR affect the documentation or any user facing updates are made.
  • Yes
  • Not applicable
• A PR for the recipes repository is created, if existing recipes are affected by the changes in this PR.
  • Yes
  • Not applicable

[Copilot]

Pull request overview

Updates the repository’s OSSF Security Insights metadata file to align with the upstream CUE schema validation format and normalize YAML formatting.

Changes:

• Added schema/validation guidance comments and an explicit YAML document start marker (---).
• Normalized YAML scalar formatting (removed unnecessary quotes, standardized empty strings and CodeQL version quoting).

---

You can also share your feedback on Copilot code review. Take the survey.

[radius-functional-tests]

Radius functional test overview

🔍 Go to test action run

Click here to see the test run details

Name	Value
Repository	radius-project/radius
Commit ref	8835ba7
Unique ID	func99ccb9f957
Image tag	pr-func99ccb9f957

• gotestsum 1.13.0
• KinD: v0.29.0
• Dapr: 1.14.4
• Azure KeyVault CSI driver: 1.4.2
• Azure Workload identity webhook: 1.3.0
• Bicep recipe location ghcr.io/radius-project/dev/test/testrecipes/test-bicep-recipes/<name>:pr-func99ccb9f957
• Terraform recipe location http://tf-module-server.radius-test-tf-module-server.svc.cluster.local/<name>.zip (in cluster)
• applications-rp test image location: ghcr.io/radius-project/dev/applications-rp:pr-func99ccb9f957
• dynamic-rp test image location: ghcr.io/radius-project/dev/dynamic-rp:pr-func99ccb9f957
• controller test image location: ghcr.io/radius-project/dev/controller:pr-func99ccb9f957
• ucp test image location: ghcr.io/radius-project/dev/ucpd:pr-func99ccb9f957
• deployment-engine test image location: ghcr.io/radius-project/deployment-engine:latest

Test Status

⌛ Building Radius and pushing container images for functional tests...
✅ Container images build succeeded
⌛ Publishing Bicep Recipes for functional tests...
✅ Recipe publishing succeeded
⌛ Starting ucp-cloud functional tests...
✅ ucp-cloud functional tests succeeded
✅ corerp-cloud functional tests succeeded

[github-actions]

Unit Tests

    2 files  ±0    415 suites  ±0   6m 31s ⏱️ -23s
4 881 tests ±0  4 879 ✅ ±0  2 💤 ±0  0 ❌ ±0 
5 783 runs  ±0  5 781 ✅ ±0  2 💤 ±0  0 ❌ ±0 

Results for commit 8835ba7. ± Comparison against base commit 0a26e31.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 51.22%. Comparing base (4e8e6fe) to head (8835ba7).
⚠️ Report is 1 commits behind head on add-security-insights.

Additional details and impacted files

@@                    Coverage Diff                    @@
##           add-security-insights   #11449      +/-   ##
=========================================================
- Coverage                  51.23%   51.22%   -0.01%     
=========================================================
  Files                        699      699              
  Lines                      44062    44062              
=========================================================
- Hits                       22574    22572       -2     
- Misses                     19329    19330       +1     
- Partials                    2159     2160       +1     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.