Initial template setup

.gitea/ISSUE_TEMPLATE/bug_report.md

@@ -0,0 +1,26 @@
+---
+name: Bug Report
+about: Something is broken or behaves unexpectedly
+title: "[Bug] "
+labels: ["bug"]
+---
+
+## What happened
+
+<!-- Describe the bug. What did you do, what did you expect, what happened instead? -->
+
+## Steps to reproduce
+
+1.
+2.
+3.
+
+## Environment
+
+- Version:
+- OS:
+- Anything else relevant:
+
+## Logs / Screenshots
+
+<!-- Paste relevant log output or attach screenshots. Use ```code blocks``` for logs. -->

.gitea/ISSUE_TEMPLATE/feature_request.md

@@ -0,0 +1,22 @@
+---
+name: Feature Request
+about: Suggest an idea or improvement
+title: "[Feature] "
+labels: ["enhancement"]
+---
+
+## The problem
+
+<!-- What are you trying to do? What's missing or annoying? -->
+
+## Proposed solution
+
+<!-- How would you solve it? Concrete behavior, not implementation details. -->
+
+## Alternatives considered
+
+<!-- What else did you think about? Why didn't that work? -->
+
+## Additional context
+
+<!-- Screenshots, examples from other tools, related issues. -->

.gitea/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,22 @@
+## Summary
+
+<!-- What does this PR do? 1-3 bullet points. -->
+
+-
+
+## Why
+
+<!-- Linked issue, motivation, or context. "Fixes #N" if applicable. -->
+
+## Testing
+
+<!-- How did you verify this works? -->
+
+- [ ]
+
+## Checklist
+
+- [ ] Code builds without warnings
+- [ ] Tests pass (or N/A)
+- [ ] Documentation updated (or N/A)
+- [ ] No secrets or credentials committed

.gitea/workflows/security.yml

@@ -0,0 +1,18 @@
+name: Security
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+  schedule:
+    - cron: '0 4 * * 1'   # Mondays 04:00 UTC
+
+jobs:
+  semgrep:
+    uses: Hellion-Forge/security-workflows/.gitea/workflows/semgrep.yml@main
+    # If you need to exclude specific rules or paths, drop a .semgrep-exclude.yml
+    # at the repo root. The reusable workflow honors it.
+
+  trivy:
+    uses: Hellion-Forge/security-workflows/.gitea/workflows/trivy.yml@main