feat: add comprehensive security scanning and EditorConfig integration

- Add govulncheck, Snyk, and Trivy vulnerability scanning
- Create security workflow for automated scanning on push/PR/schedule
- Add gitleaks for secrets detection and prevention
- Implement EditorConfig linting with eclint and editorconfig-checker
- Update Makefile with security and formatting targets
- Create SECURITY.md with vulnerability reporting guidelines
- Configure Dependabot for automated dependency updates
- Fix all EditorConfig violations across codebase
- Update Go version to 1.23.10 to address stdlib vulnerabilities
- Add tests for internal/helpers package (80% coverage)
- Remove deprecated functions and migrate to error-returning patterns
- Fix YAML indentation in test fixtures to resolve test failures

.github/workflows/ci.yml

@@ -13,10 +13,17 @@ jobs:
         uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5
       - name: Install dependencies
         run: go mod tidy
+      - name: Setup Node.js for EditorConfig tools
+        uses: actions/setup-node@8257c7bb9bd8cefc6ddbc22fb862ec83f2e01c2c # v4.1.0
+        with:
+          node-version: '18'
+      - name: Install EditorConfig tools
+        run: npm install -g eclint
+      - name: Check EditorConfig compliance
+        run: eclint check .
       - name: Run unit tests
         run: go test ./...
       - name: Example Action Readme Generation
         run: |
           go run . gen --config config.yaml
         working-directory: ./testdata/example-action
-