file cleanup

.gitea/workflows/security.yaml

@@ -8,18 +8,18 @@ jobs:
       - name: "clone code"
         uses: actions/checkout@v4
       
-      - name: "static code analysis"
-        uses: securego/gosec@v2.22.3
-        with:
-          args: ./...
-      
       - name: "install go"
         uses: https://code.jakeyoungdev.com/actions/install-go@v0.1.3
         with:
-            commands: |
+          commands: |
-                golang.org/x/vuln/cmd/govulncheck@latest
+              golang.org/x/vuln/cmd/govulncheck@latest
 
       - name: "dependency and stdlib scan"
         uses: https://code.jakeyoungdev.com/actions/report-vulns@master
         with:
           manager: go
+
+      - name: "static code analysis"
+        uses: securego/gosec@master
+        with:
+          args: ./...