chore(ci): ignore unirtm_data directories in trivy scanning to prevent false positive secrets alerts

Fixes: https://github.com/snowdreamtech/UniRTM/security/code-scanning/28

Author: snowdream

.github/workflows/cd.yml

@@ -163,6 +163,7 @@ jobs:
           output: "trivy-results.sarif"
           severity: "CRITICAL,HIGH,MEDIUM,LOW"
           exit-code: "1"
+          skip-dirs: "unirtm_data,cmd/unirtm_data"
 
       - name: "📤 Upload Security Audit (SARIF)"
         uses: github/codeql-action/upload-sarif@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2

.github/workflows/ci.yml

@@ -474,6 +474,7 @@ jobs:
           output: "trivy-results.sarif"
           severity: "CRITICAL,HIGH,MEDIUM,LOW"
           exit-code: "1"
+          skip-dirs: "unirtm_data,cmd/unirtm_data"
 
       - name: "📤 Upload Security Audit (SARIF)"
         uses: github/codeql-action/upload-sarif@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2

trivy.yaml

@@ -0,0 +1,4 @@
+scan:
+  skip-dirs:
+    - "unirtm_data"
+    - "cmd/unirtm_data"