Make AppSec review comments for JiHu contributions in the CNG repository
We recently had a JiHu contribution that was properly labeled as JiHu contribution but did not get the AppSec comment. I'm guessing the CNG repository isn't something that triage-ops is monitoring. This may be intentional, so there may be a reason for this that I'm unaware of.
Ideally, AppSec would be getting pings for this repository as well.
If there's a reason why triage-ops doesn't/can't monitor this repository, we can try to figure out another way to get AppSec reviews of those MRs.