chore: add environment configs and update component versions for Trivy scan

[cosmir17]

Summary

Builds on #70 to add missing environment configurations and update component versions for the Trivy image scanning workflow.

Changes

• Add GHCR authentication for private image access
• Add environment configs for node-dev-01, preview, and preprod
• Sync pc-chain-config.json files from midnight-node repo
• Update component versions:
  • postgres: 15.3 → 17.2
  • cardano-db-sync: 13.6.0.4 → 13.6.0.5
  • cardano-node: 10.2.1 → 10.5.3
  • testnet-02 node: 0.12.0 → 0.12.1
• Improve scan.sh error handling with placeholder SARIF for failed scans

[github-advanced-security]

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

[cosmir17]

Hey @gilescope, made the tweaks you mentioned - added the missing environments and updated the configs. Let me know if you'd like any adjustments and feel free to make any changes and merge this PR to yours 🙏

[gilescope]

I really want there to be no secrets. If that means there's some envs we don't scan here then that's acceptable.

[cosmir17]

@gilescope Good point - verified the images in the compose files (midnight-node, cardano-node, cardano-db-sync, ogmios, postgres) are all publicly accessible. Removed the GHCR login step to keep it fork-friendly.