Add free alternative to CodeQL

[volpatto]

Despite CodeQL being a fantastic tool natively supported by GitHub, it requires a subscription to run CodeQL security checks in GitHub Actions for private repositories. In many cases, it can be cumbersome or expensive, depending on the budget of the project.

Search in the GitHub Marketplace for free alternatives compatible with private repos.