fix: replace safety CLI with Safety GitHub Action

- Updated security.yml and ci.yml to use pyupio/safety-action@v1
- Replaced direct CLI calls with authenticated GitHub Action
- Uses SAFETY_API_KEY secret for authentication
- Resolves authentication requirement in newer Safety CLI versions

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>

Author: codebydivine

.github/workflows/ci.yml

@@ -86,8 +86,10 @@ jobs:
       - name: Run bandit security scan
         run: poetry run bandit -r src/ -f txt
 
-      - name: Run safety dependency check
-        run: poetry run safety scan
+      - name: Run Safety to check for vulnerabilities
+        uses: pyupio/safety-action@v1
+        with:
+          api-key: ${{ secrets.SAFETY_API_KEY }}
 
   build:
     runs-on: ubuntu-latest

.github/workflows/security.yml

@@ -70,9 +70,10 @@ jobs:
         run: |
           poetry install --no-interaction --with dev --no-root
 
-      - name: Run Safety scan
-        run: |
-          poetry run safety scan --output json --save-as safety-results.json || true
+      - name: Run Safety to check for vulnerabilities
+        uses: pyupio/safety-action@v1
+        with:
+          api-key: ${{ secrets.SAFETY_API_KEY }}
 
       - name: Run Bandit security scan
         run: |