Update to add CI and release workflows

this is work in progess.....
signed off by sean conroy [email protected]

.github/workflows/checks.yaml

@@ -0,0 +1,33 @@
+name: Checks
+
+"on":
+  push:
+    branches:
+      - main
+  pull_request:
+    branches:
+      - main
+
+jobs:
+  ci: 
+    runs-on: ubuntu-latest
+    outputs:
+      status: ${{ job.status }}
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v2
+
+    - name : Run EC Validate (keyless)
+      uses: ./
+      with:
+        image: ghcr.io/enterprise-contract/golden-container:latest
+        identity: https:\/\/github\.com\/(slsa-framework\/slsa-github-generator|enterprise-contract\/golden-container)\/
+        issuer: https://token.actions.githubusercontent.com
+
+    - name : Run EC Validate (Long_Lived)
+      uses: ./
+      with:
+        image: quay.io/redhat-appstudio/ec-golden-image:latest
+        key: ${{ vars.PUBLIC_KEY }}
+        policy: github.com/enterprise-contract/config//slsa3
+        extra-params: --ignore-rekor

.github/workflows/release.yaml

@@ -0,0 +1,23 @@
+name: Release
+
+"on":
+  workflow_run:
+    workflows: [Checks]
+    types: [completed]
+    branches: [main]
+
+jobs:
+  release:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v2
+
+    - name: Create or Update 'latest' EC Validate Release
+      uses: softprops/action-gh-release@v1
+      with:
+        name: Latest release
+        body: Latest stable release.
+        tag_name: latest
+        generate_release_notes: false
+        draft: false