Fix Sarif format of gosec output

.github/workflows/security.yml

@@ -25,6 +25,8 @@ jobs:
         uses: securego/gosec@v2.21.3
         with:
           args: '-no-fail -fmt sarif -out results.sarif -tests ./...'
+      - name: Fix SARIF format
+        run: yq --inplace --output-format json 'del(.runs.[].results.[].fixes)' results.sarif
       - name: Upload SARIF file
         uses: github/codeql-action/upload-sarif@v3
         with:
@@ -42,7 +44,6 @@ jobs:
       - id: govulncheck
         uses: golang/govulncheck-action@v1.0.3
         with:
-          govulncheck-action: go.mod
           output-format: sarif
           output-file: results.sarif
       - name: Fix SARIF format