build(deps): bump github.com/securego/gosec/v2 from 2.3.0 to 2.8.1

[dependabot-preview]

Bumps github.com/securego/gosec/v2 from 2.3.0 to 2.8.1.

Release notes

Sourced from github.com/securego/gosec/v2's releases.

v2.8.1

Changelog

3f800cc Fix the unit tests (#652) df10b65 Fix gosimple lint warning (#651) 731d0d5 Results must always be present in the SARIF report (#650) 3c230ac errors.go: add Hash.Write() to the white list. (#648) e72b1e5 Use of vars instead of func c81cff0 Update all dependencies (#646) 3ff0a2c Fixes #644 (#645) e3dffd6 Update renovate configuration aa35eb5 Delete renovate.json (#642) 3b1b77e add onboarding (#640) 03360ba Update renovate configuration 8a8dbec Tidy up the dependencies (#637) 3a4d09b Update all dependencies (#635) 6cde6b3 Disable cache in golangci job (#636) 1256f16 Fix lint and fail on error in the ci build dbb9811 Add crypto and lint to the tools modules 244adc6 Update the github ci action to use cache and matrix strategy df1249d Update install.sh with more installation options af27673 Update README.md

v2.8.0

Changelog

9fc8e20 Add favicon for HTML template (#628) 91dae7f Update the design of HTML report e72f54e Fix HTML template and display the gosec version c3f25b8 fix html report tag styling (#623) 433a674 show nosec in html report summary (#621) d040f07 Handle gosec version in SARIF report 51f7411 Add arm64 support (#618) e7ac882 Update go version to 1.16 (#616) 3a9a6ad Sarif provide Snippet with Issue.Code 1325319 Create dependabot.yml (#614) d8cfcd6 Allow the user to enable/disable colorisation of the text report in the stdout a8b633f Adding stdout and verbose flags and refactor how the report is saved 103c429 Enable golangcli and improve testing for formatters 4df7f1c Fix typos, Go Report link and Gofmt f4ea33d Update how the test coverage is generated c4f5932 Refactor : Replace Cwe with cwe.Weakness ddfa253 Define a report package with core and per format sub-packages cc83d4c Generate the SARIF types, handle taxonomies and separate responsibilities 0fa5d0b Fix the go modules after updating to get the tests passing (#605) 3763953 Migrate sonar types in a dedicated package (#604) b519743 chore(deps): update all dependencies (#599) 569328e Fix typos (#594) 0695fa0 Add -u to local install instructions (#595) 7f2308b Tidy up the moduels after updating (#593)

... (truncated)

Commits

• 3f800cc Fix the unit tests (#652)
• df10b65 Fix gosimple lint warning (#651)
• 731d0d5 Results must always be present in the SARIF report (#650)
• 3c230ac errors.go: add Hash.Write() to the white list. (#648)
• e72b1e5 Use of vars instead of func
• c81cff0 Update all dependencies (#646)
• 3ff0a2c Fixes #644 (#645)
• e3dffd6 Update renovate configuration
• aa35eb5 Delete renovate.json (#642)
• 3b1b77e add onboarding (#640)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

• Update frequency
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[dependabot-preview]

The following labels could not be found: dependency.