chore(ci): add trivy

[samber]

No description provided.

[claude]

Claude encountered an error —— View job

---

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 65.04%. Comparing base (76f26b2) to head (080e9b4).
⚠️ Report is 3 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #251   +/-   ##
=======================================
  Coverage   65.04%   65.04%           
=======================================
  Files          95       95           
  Lines        9104     9104           
=======================================
  Hits         5922     5922           
  Misses       3088     3088           
  Partials       94       94           

Flag	Coverage Δ
unittests	65.04% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[Copilot]

Pull request overview

Adds a dedicated GitHub Actions security workflow (including Trivy) and adjusts CI linting accordingly.

Changes:

• Enable the modernize linter in GolangCI-Lint config.
• Add a new Security workflow to run govulncheck, Bearer, CodeQL, and Trivy (with SARIF upload).
• Remove Bearer + CodeQL steps from the existing lint workflow and add manual dispatch.

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 2 comments.

File	Description
.golangci.yml	Enables an additional linter (modernize).
.github/workflows/security.yml	Introduces a scheduled/PR security scanning pipeline, including Trivy SARIF upload.
.github/workflows/lint.yml	Keeps linting focused on golangci-lint; moves security scanners out to the new workflow.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[github-advanced-security]

You are seeing this message because GitHub Code Scanning has recently been set up for this repository, or this pull request contains the workflow file for the Code Scanning tool.

What Enabling Code Scanning Means:

• The 'Security' tab will display more code scanning analysis results (e.g., for the default branch).
• Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results.
• You will be able to see the analysis results for the pull request's branch on this overview once the scans have completed and the checks have passed.

For more information about GitHub Code Scanning, check out the documentation.