feat: add gosec to run static code analysis workflow

This commit introduces a new GitHub Actions workflow to run 'gosec' for static code analysis of Go modules.
The workflow will automatically scan the source code for potential security issues and improve the security posture of the repository.

References:
- Gosec Documentation: https://github.com/securego/gosec
- Related Issue: #22

Signed-off-by: atilsensalduz <atil.sensalduz@gmail.com>

Author: atilsensalduz

.github/workflows/gosec.yaml

@@ -0,0 +1,20 @@
+name: Run Gosec
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+    branches:
+      - main
+jobs:
+  tests:
+    runs-on: ubuntu-latest
+    env:
+      GO111MODULE: on
+    steps:
+      - name: Checkout Source
+        uses: actions/checkout@v4
+      - name: Run Gosec Security Scanner
+        uses: securego/gosec@master
+        with:
+          args: ./...

.github/workflows/govulncheck.yml .github/workflows/govulncheck.yaml.github/workflows/govulncheck.yml renamed to .github/workflows/govulncheck.yaml

@@ -5,4 +5,4 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - id: govulncheck
-        uses: golang/govulncheck-action@v1
+        uses: golang/govulncheck-action@v1