build(build): add concurrency controls to orchestrator workflows

[WilliamBerryiii]

Description

Adds workflow-level concurrency controls to all three orchestrator workflows. This prevents unnecessary parallel runs when multiple commits are pushed in quick succession and reduces GitHub Actions resource consumption.

Changes:

• Added concurrency block to pr-validation.yml with cancel-in-progress: true to cancel stale PR validation runs when new commits arrive
• Added concurrency block to main.yml with cancel-in-progress: false to prevent cancellation of main branch builds
• Added concurrency block to weekly-security-maintenance.yml with cancel-in-progress: false for scheduled job protection
• Updated .cspell/general-technical.txt with missing dictionary terms (carryforward, SCHED, SECCHECK) that were causing pre-existing spell-check failures

Related Issue(s)

Fixes #274

Type of Change

Select all that apply:

Code & Documentation:

• Bug fix (non-breaking change fixing an issue)
• New feature (non-breaking change adding functionality)
• Breaking change (fix or feature causing existing functionality to change)
• Documentation update

Infrastructure & Configuration:

• GitHub Actions workflow
• Linting configuration (markdown, PowerShell, etc.)
• Security configuration
• DevContainer configuration
• Dependency update

AI Artifacts:

• Reviewed contribution with prompt-builder agent and addressed all feedback
• Copilot instructions (.github/instructions/*.instructions.md)
• Copilot prompt (.github/prompts/*.prompt.md)
• Copilot agent (.github/agents/*.agent.md)

Note for AI Artifact Contributors:

• Agents: Research, indexing/referencing other project (using standard VS Code GitHub Copilot/MCP tools), planning, and general implementation agents likely already exist. Review .github/agents/ before creating new ones.
• Model Versions: Only contributions targeting the latest Anthropic and OpenAI models will be accepted. Older model versions (e.g., GPT-3.5, Claude 3) will be rejected.
• See Agents Not Accepted and Model Version Requirements.

Other:

• Script/automation (.ps1, .sh, .py)
• Other (please describe):

Sample Prompts (for AI Artifact Contributions)

N/A - This PR does not include AI artifacts.

Testing

• YAML lint validation passes (npm run lint:yaml)
• Spell check passes (npm run spell-check)

Checklist

Required Checks

• Documentation is updated (if applicable)
• Files follow existing naming conventions
• Changes are backwards compatible (if applicable)
• Tests added for new functionality (if applicable)

AI Artifact Contributions

N/A

Required Automated Checks

The following validation commands must pass before merging:

• Markdown linting: npm run lint:md
• Spell checking: npm run spell-check
• Frontmatter validation: npm run lint:frontmatter
• Link validation: npm run lint:md-links
• PowerShell analysis: npm run lint:ps

Security Considerations

• This PR does not contain any sensitive or NDA information
• Any new dependencies have been reviewed for security issues
• Security-related scripts follow the principle of least privilege

Additional Notes

Concurrency Configuration Patterns

Workflow	Group Key	Cancel In-Progress	Rationale
pr-validation.yml	workflow-head_ref	true	Cancel stale PR runs when new commits arrive
main.yml	workflow-ref	false	Protect main branch builds from cancellation
weekly-security-maintenance.yml	workflow	false	Single weekly job, no ref variation needed

Dictionary Updates

Fixed pre-existing spell-check gaps that passed CI due to timing:

• carryforward - Codecov configuration term (PR build(build): add Pester code coverage to main branch CI #250)
• SCHED, SECCHECK - Mermaid diagram labels (PR docs(architecture): add architecture documentation and value proposition #252)

⚡ - Generated by Copilot

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Scanned Files

None

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 29.44%. Comparing base (ccbdfa3) to head (428d5e1).

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #275      +/-   ##
==========================================
+ Coverage   29.40%   29.44%   +0.03%     
==========================================
  Files          14       14              
  Lines        2785     2785              
==========================================
+ Hits          819      820       +1     
+ Misses       1966     1965       -1     

Flag	Coverage Δ
pester	29.44% <ø> (+0.03%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.
see 1 file with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[Copilot]

Pull request overview

Adds GitHub Actions workflow-level concurrency controls to reduce redundant parallel orchestrator runs and lower Actions resource usage, plus fixes pre-existing spell-check dictionary gaps.

Changes:

• Added concurrency blocks to PR validation, main CI, and weekly security maintenance workflows with appropriate cancel/queue behavior.
• Updated .cspell dictionary with missing technical terms to eliminate existing spell-check failures.

Reviewed changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated 1 comment.

File	Description
.github/workflows/pr-validation.yml	Adds workflow concurrency with cancellation of superseded PR runs.
.github/workflows/main.yml	Adds workflow concurrency to serialize main builds without cancellation.
.github/workflows/weekly-security-maintenance.yml	Adds workflow concurrency to prevent overlapping weekly security runs.
.cspell/general-technical.txt	Adds missing Codecov and Mermaid diagram terms to the spell-check dictionary.

[Copilot]

Pull request overview

Copilot reviewed 4 out of 4 changed files in this pull request and generated no new comments.