Add a minion to scan for PHP misconfiguration

[paradoxengine]

An endless classic, PHP has all sort of potential configuration woes

Allow remote opens, globals (though this has luckily gone away) and an array of other things - we can probably check a hardening guide to make sure we're not missing anything major.

It's important to keep in mind we should only flag things that have a reasonable chance of being a real problem, not just far-fetched hardening improvements.