Fix failing GitHub Actions workflows on main branch

[Copilot]

This PR fixes all failing GitHub Actions workflows on the main branch by addressing multiple configuration and version issues that were preventing successful CI runs.

Issues Fixed

1. Go Version Incompatibility

The workflows were configured to use Go 1.25, which doesn't exist yet. This caused the golangci-lint action to fail with:

Error: can't load config: the Go language version (go1.24) used to build golangci-lint is lower than the targeted Go version (1.25.0)

Fix: Updated all workflows and go.mod to use Go 1.23, which is the current stable version.

2. Integration Test Health Endpoint Issue

The integration tests were failing because they attempted to access the health endpoint on the wrong port:

curl: (52) Empty reply from server

Fix: Updated the integration test configuration to use separate ports for the health endpoint (8080) and main server (8443) to avoid port conflicts.

3. Invalid Security Scanner Action

The security workflow was using an invalid GitHub Action:

Unable to resolve action securecodewarrior/github-action-gosec, repository not found

Fix: Replaced the invalid action with direct installation and execution of gosec using go install.

4. Missing Semantic Release Configuration

The semantic release workflow was failing due to missing configuration:

SemanticReleaseError: The release branches are invalid in the `branches` configuration.

Fix: Added .releaserc.json configuration file with proper branch and plugin settings.

5. Outdated Action Versions

Updated several GitHub Actions to their latest stable versions for better compatibility and security:

• actions/cache: v3 → v4
• codecov/codecov-action: v3 → v4
• golangci/golangci-lint-action: v3 → v6
• github/codeql-action/upload-sarif: v2 → v3
• actions/dependency-review-action: v3 → v4

Testing

• ✅ All Go tests pass locally
• ✅ Server and client binaries build successfully
• ✅ Health endpoint functionality verified
• ✅ Workflow syntax validated

The changes are minimal and focused on configuration fixes without modifying the core application logic. All failing workflows should now pass successfully.

Fixes #6.

---

💬 Share your feedback on Copilot coding agent for the chance to win a $200 gift card! Click here to start the survey.

[Copilot]

@4cecoder 👋 This repository doesn't have Copilot instructions. With Copilot instructions, I can understand the repository better, work faster and produce higher quality PRs.

I can generate a .github/copilot-instructions.md file for you automatically. Click here to open a pre-filled issue and assign it to me. I'll write the instructions, and then tag you for review.

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}