security: Do not persist git credentials

.github/workflows/ci.yml

@@ -21,6 +21,8 @@ jobs:
         python-version: ["3.9", "3.10"]
     steps:
       - uses: actions/[email protected]
+        with:
+          persist-credentials: false
       - name: Set up Python ${{ matrix.python-version }}
         uses: actions/[email protected]
         with:
@@ -62,6 +64,7 @@ jobs:
     steps:
       - uses: actions/[email protected]
         with:
+          persist-credentials: false
           fetch-depth: 0
       - name: Diffset
         id: diffset
@@ -95,6 +98,8 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/[email protected]
+        with:
+          persist-credentials: false
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/[email protected]
         continue-on-error: true
@@ -123,6 +128,8 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/[email protected]
+        with:
+          persist-credentials: false
       - name: Validate Dockerfile using hadolint
         uses: hadolint/[email protected]
         with:
@@ -133,6 +140,8 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/[email protected]
+        with:
+          persist-credentials: false
       - name: Check Makefile for errors
         uses: Uno-Takashi/checkmake-action@main
 
@@ -145,6 +154,8 @@ jobs:
       security-events: write
     steps:
       - uses: actions/[email protected]
+        with:
+          persist-credentials: false
       - name: Check code using Checkov
         uses: bridgecrewio/checkov-action@master
         with: