chore: no secret scanning by KICS

[scherersebastian]

Yo, yo, listen up, I got a tale to tell,
'Bout how our dev game is ringin' like a bell.
We're on this GitHub grind, pull requests in flight,
But when it comes to scans, man, somethin' ain't right.

Listen, y'all ambitious, that's cool, no debate,
But double, triple scans? Man, let's set this straight.
Veracode, Spotbugs, doing their dance,
But why we got all three for a single PR glance?

Here's my proposition, let's trim it lean,
Drop Veracode and Spotbugs, let CodeQL be the queen.
Security's important, that's the universal rule,
But PR after PR, we lookin' like a fool.

Secret Scan on the PR, that's all we need,
Let the rest run at night, let our main branch breathe.
So what y'all say? Time to make our move,
A bit of fun's essential when we're in the dev groove.

Open to suggestions, let's discuss this play,
But remember, we're here to innovate, not delay.
So drop a comment, let me hear your voice,
Are we cool with CodeQL? Y'all, it's time to make a choice.

[sonarqubecloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information

[ds-jhartmann]

Thanks for the suggestion! We will look into further optimization of our workflows in the future. There is definitely room for improvement.