fix(agents): Remove .github/workflows/*.yml from dependency-pr-review.md paths filter

Tracked as part of #1365.

## Description

The Dependabot PR Review workflow (`dependency-pr-review.lock.yml`) fails when Dependabot bumps GitHub Actions versions because those PRs modify workflow files. GitHub strips secrets for `pull_request` events on PRs that modify workflow files, causing the secret validation step to fail.

**Example:** [PR #1364 → Run #24412526951](https://github.com/microsoft/hve-core/actions/runs/24412526951)

## Acceptance Criteria

- `.github/workflows/*.yml` is removed from the `paths` trigger filter in `dependency-pr-review.md`.
- Dependabot PRs that bump GitHub Actions versions no longer trigger the dependency PR review workflow and therefore no longer fail at secret validation.
- Dependabot PRs that modify only package manifests (`package.json`, `pyproject.toml`, etc.) continue to trigger and succeed as before.
Related to #1365




> Generated by [Issue Triage](https://github.com/microsoft/hve-core/actions/runs/24453859464/agentic_workflow) for issue #1365 · ● 249.4K · [◷](https://github.com/search?q=repo%3Amicrosoft%2Fhve-core+is%3Aissue+%22gh-aw-workflow-call-id%3A+microsoft%2Fhve-core%2Fissue-triage%22&type=issues)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(agents): Remove .github/workflows/*.yml from dependency-pr-review.md paths filter #1367

Description

Acceptance Criteria

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

fix(agents): Remove .github/workflows/*.yml from dependency-pr-review.md paths filter #1367

Description

Description

Acceptance Criteria

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions