feat: add ghostfree tool

[shane-js]

Pull Request Checklist

• I have read and followed the CONTRIBUTING.md guidelines.
• I have read and followed the Guidance for submissions involving paid services.
• My contribution adds a new instruction, prompt, agent, skill, or workflow file in the correct directory.
• The file follows the required naming convention.
• The content is clearly structured and follows the example format.
• I have tested my instructions, prompt, agent, skill, or workflow with GitHub Copilot.
• I have run npm start and verified that README.md is up to date.
• I am targeting the staged branch for this pull request.

---

Description

I made a free (MIT licensed) MCP server that helps AI agents interface with industry standard vulnerability databases to provide context needed to help find, triage, and fix security vulnerabilities in your code's dependencies. A much larger write up is here if you'd like even more detail: https://github.com/shane-js/ghostfree .

---

Type of Contribution

• New instruction file.
• New prompt file.
• New agent file.
• New plugin.
• New skill file.
• New agentic workflow.
• Update to existing instruction, prompt, agent, plugin, skill, or workflow.
• Other (please specify): MCP server (looks to be 'tools' page on website is the place for that so it is where I put it but please let me know if I missed a better fit)

---

Additional Notes

---

By submitting this pull request, I confirm that my contribution abides by the Code of Conduct and will be licensed under the MIT License.

[Copilot]

Pull request overview

Adds a new entry to the Awesome Copilot website tools catalog to surface the GhostFree MCP server / VS Code extension for dependency vulnerability scanning and enrichment.

Changes:

• Added a new ghostfree tool entry with description, requirements, links, features, and tags.
• Categorized the tool under VS Code Extensions for display and filtering on the tools page.