Fix: Update secrets-scan workflow to only report verified secrets

- Change trufflehog configuration to only report verified secrets
- Remove reporting of unverified secrets to prevent false positives
- This fixes the GitHub Actions failure caused by PostgreSQL connection string template detection

Author: liyang-bsy

.github/workflows/secrets-scan.yaml

@@ -30,4 +30,4 @@ jobs:
       - name: Secret Scanning
         uses: trufflesecurity/trufflehog@7dc056a193116ba8d82154bf0549381c8fb8545c # v3.88.14
         with:
-          extra_args: --results=verified,unknown
+          extra_args: --results=verified --only-verified