Drop obsolete run_owasp_check input and unused secrets

build-backend-module.yml no longer accepts run_owasp_check as an input,
and explicit undeclared secrets fail the workflow. Move the OWASP check
into its own owasp-dependency-check.yml job that only runs on push /
workflow_dispatch, and prune the build job's secrets to just the Maven
credentials it actually consumes.

Author: ibacher

.github/workflows/build.yml

@@ -1,4 +1,4 @@
-name: Build and Test
+name: Build with Maven
 
 on:
   push:
@@ -7,23 +7,20 @@ on:
     branches: [ master ]
   workflow_dispatch:
 
+concurrency:
+  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
+  cancel-in-progress: ${{ github.event_name == 'pull_request' }}
+
 jobs:
   build:
     uses: openmrs/openmrs-contrib-gha-workflows/.github/workflows/build-backend-module.yml@main
-    with:
-      java_versions: '[8]'
-      main_java_version: '8'
-      run_owasp_check: false
     secrets:
       MAVEN_REPO_USERNAME: ${{ secrets.MAVEN_REPO_USERNAME }}
       MAVEN_REPO_API_KEY: ${{ secrets.MAVEN_REPO_API_KEY }}
-      BOT_GH_TOKEN: ${{ secrets.OMRS_BOT_GH_TOKEN }}
 
   owasp-dependency-check:
     if: ${{ github.event_name != 'pull_request' }}
     uses: openmrs/openmrs-contrib-gha-workflows/.github/workflows/owasp-dependency-check.yml@main
-    with:
-      java_version: '8'
     secrets:
       NVD_API_KEY: ${{ secrets.NVD_API_KEY }}
       BOT_GH_TOKEN: ${{ secrets.OMRS_BOT_GH_TOKEN }}