zizmorcore/zizmor

AI Summary: Implement a Zizmor feature that either recommends or requires the use of the `timeout-minutes` property in GitHub Actions workflows for all jobs to prevent runaway jobs from consuming excessive runner minutes. The implementation should consider that reusable workflows do not directly support this property, requiring a different approach for those cases.

AI Summary: The task involves adding subfeatures to existing audits within the `zizmor` static analysis tool for GitHub Actions. This includes identifying and adding sub-spans for specific issues within `bot-conditions`, `template-injection`, `unsound-contains`, and `github-env` audits, and potentially others. The goal is to improve the granularity and context of reported findings.