Bump securego/gosec from 2.22.8 to 2.22.9 (#1835)

dependabot[bot] · web-flow · commit 4244d4a1c3d7 · 2025-09-24T08:24:57.000Z
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -32,7 +32,7 @@ jobs:
         with:
           persist-credentials: false
       - name: Run gosec security scanner
-        uses: securego/gosec@c9453023c4e81ebdb6dde29e22d9cd5e2285fb16 # v2.22.8
+        uses: securego/gosec@15d5c61e866bc2e2e8389376a31f1e5e09bde7d8 # v2.22.9
         with:
           # with '-no-fail' we let the report trigger content trigger a failure using the GitHub Security features.
           args: "-no-fail -fmt sarif -out gosec.sarif ./..."
