Add Maven dependency submission workflow

Resolves full dependency tree with versions so Dependabot
can match against known CVEs.

Co-authored-by: Ona <no-reply@ona.com>

Author: meysholdt

.github/workflows/dependency-submission.yml

@@ -0,0 +1,27 @@
+name: Maven Dependency Submission
+
+on:
+  push:
+    branches: [ "main" ]
+    paths:
+      - 'pom.xml'
+      - '.mvn/**'
+  workflow_dispatch:
+
+permissions:
+  contents: write
+
+jobs:
+  submit:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up JDK 17
+        uses: actions/setup-java@v4
+        with:
+          java-version: '17'
+          distribution: 'adopt'
+
+      - name: Submit dependency graph
+        uses: advanced-security/maven-dependency-submission-action@v4