Chore/add mdformat

[jamestexas]

No description provided.

[Copilot]

Pull request overview

This PR introduces repository tooling and workflow updates: it adds Markdown formatting via mdformat, checks in Beads (bd) issue-tracking integration/docs, and adjusts GitHub Actions (pinning action SHAs and changing security scanning steps).

Changes:

• Add mdformat as a pre-commit hook (with GFM/frontmatter plugins).
• Add Beads (bd) repo integration files and agent instructions.
• Pin GitHub Actions to commit SHAs and update the CI security job implementation.

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 2 comments.

Show a summary per file

File	Description
AGENTS.md	Adds agent workflow guidance (incl. Beads usage) and session completion checklist.
.pre-commit-config.yaml	Adds mdformat hook for Markdown formatting.
.gitignore	Ignores Dolt/DB artifacts potentially created by bd/Dolt.
.github/workflows/openssl.yml	Pins commonly used actions to SHAs; tweaks echoed messages.
.github/workflows/ci.yml	Pins actions to SHAs; changes security scan steps (gosec via go install, removes Trivy).
.beads/README.md	Adds Beads overview and setup instructions.
.beads/metadata.json	Adds Beads backend metadata for the repo.
.beads/interactions.jsonl	Adds an (currently empty) interactions log file.
.beads/hooks/prepare-commit-msg	Adds Beads-managed git hook wrapper.
.beads/hooks/pre-push	Adds Beads-managed git hook wrapper.
.beads/hooks/pre-commit	Adds Beads-managed git hook wrapper.
.beads/hooks/post-merge	Adds Beads-managed git hook wrapper.
.beads/hooks/post-checkout	Adds Beads-managed git hook wrapper.
.beads/config.yaml	Adds Beads configuration template/comments.
.beads/.gitignore	Ignores Beads/Dolt runtime and machine-local files under .beads/.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

This change removes the Trivy filesystem vulnerability scan that previously ran in the Security job. If Trivy (or an equivalent dependency/container/FS scanner) is still part of the project’s security posture, it should be restored or replaced so the workflow continues to check for known CVEs beyond what gosec covers.

Suggested change

	- name: Run Trivy filesystem scan
	uses: aquasecurity/trivy-action@v0.28.0
	with:
	scan-type: 'fs'
	ignore-unfixed: true
	severity: 'CRITICAL,HIGH'

[Copilot]

This references docs/QUICKSTART.md, but that file doesn’t exist in the repository (current docs are docs/FIXES.md and docs/IMPLEMENTATION.md). Update the link to an existing document or add the referenced Quickstart file so readers don’t hit a dead link.