fix(security): update GitHub Actions workflow for both branches

- Fix deprecated actions/upload-artifact from v3 to v4
- Update CodeQL actions from v2 to v3 for latest security features
- Add develop branch to security scanning triggers
- Ensure security scans run on both main and develop branches

Authored-By: Fabien Dostie

Author: fabiendostie

.github/workflows/security.yml

@@ -2,9 +2,9 @@ name: Security Scan
 
 on:
   push:
-    branches: [ main ]
+    branches: [ main, develop ]
   pull_request:
-    branches: [ main ]
+    branches: [ main, develop ]
   schedule:
     - cron: '0 6 * * 1'  # Weekly on Monday at 6 AM UTC
 
@@ -40,7 +40,7 @@ jobs:
         safety check --json --output safety-report.json || true
 
     - name: Upload security reports
-      uses: actions/upload-artifact@v3
+      uses: actions/upload-artifact@v4
       with:
         name: security-reports
         path: |
@@ -65,12 +65,12 @@ jobs:
       uses: actions/checkout@v4
 
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@v2
+      uses: github/codeql-action/init@v3
       with:
         languages: ${{ matrix.language }}
 
     - name: Autobuild
-      uses: github/codeql-action/autobuild@v2
+      uses: github/codeql-action/autobuild@v3
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v2
+      uses: github/codeql-action/analyze@v3