SASTBot: Monthly dependency updates for 18.4

What does this MR do?

• upgrade Kics version [2.1.7 => 2.1.13]
• upgrade github.com/stretchr/testify version [v1.10.0 => v1.11.1]
• upgrade gitlab.com/gitlab-org/security-products/analyzers/ruleset/v3 version [v3.3.2 => v3.3.3]

For SpotBugs, consider whether this change needs to be manually backported to the v5 branch since it's still used by the majority of GitLab 18.x users. More context can be found in this issue.

CHANGELOG is generated by SASTBot.

What are the relevant issue numbers?

• GitLab KICS IaC SAST template using outdated ki... (gitlab-org/gitlab#565603 - closed) • Hua Yan • 18.5

Does this MR meet the acceptance criteria?

• Changelog entry added
• Documentation created/updated for GitLab EE, if necessary
• Documentation created/updated for this project, if necessary
• Documentation reviewed by technical writer or follow-up review issue created
• Tests added for this feature/bug
• Job definition updated, if necessary
  • Auto-DevOps template
  • Job definition example
  • CI Templates
• Conforms to the code review guidelines
• Conforms to the Go guidelines
• Security reports checked/validated by reviewer