Prepping 0.9.4 release

[paras-gupta2]

Changes proposed in this PR:

• Preparing 0.9.4 patch release.

How I've tested this PR:

How I expect reviewers to test this PR:

Checklist:

• Tests added
• CHANGELOG entry added

PCI review checklist

• I have documented a clear reason for, and description of, the change I am making.

• If applicable, I've documented a plan to revert these changes if they require more than reverting the pull request.

• If applicable, I've documented the impact of any changes to security controls.

  Examples of changes to security controls include using new access control methods, adding or removing logging pipelines, etc.

[Copilot]

Pull request overview

Prepares the 0.9.4 patch release by updating release artifacts/config and documenting security-related dependency changes.

Changes:

• Update the Docker build to install go-discover from a new pinned commit.
• Add additional vulnerability suppressions to the release security scan configuration.
• Adjust the CI lint workflow’s configured golangci-lint version and update the 0.9.4 changelog entry accordingly.

Reviewed changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated 2 comments.

File	Description
Dockerfile	Pins go-discover install to a new commit for the build stage.
CHANGELOG.md	Updates the 0.9.4 SECURITY notes to reflect the new go-discover pin.
.release/security-scan.hcl	Adds new vulnerability IDs to the container scan suppression list.
.github/workflows/test.yml	Changes the configured golangci-lint version used in CI.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

You can also share your feedback on Copilot code review. Take the survey.