fix: suppress gosec G702 false positive in service_client.go

Add nosec comment to allow command execution from OS_PW_CMD environment
variable. This is an intentional feature for secure password retrieval
where the environment variable is set by operator/admin, not user input.

Author: fwiesel

internal/openstack/service_client.go

@@ -36,7 +36,7 @@ func GetServiceClient(ctx context.Context, serviceType string, authInfo *clientc
 
 	if osPWCmd := os.Getenv("OS_PW_CMD"); osPWCmd != "" {
 		// run external command to get password
-		cmd := exec.Command("sh", "-c", osPWCmd)
+		cmd := exec.Command("sh", "-c", osPWCmd) // #nosec G702 -- OS_PW_CMD is set by operator/admin, not user input
 		out, err := cmd.Output()
 		if err != nil {
 			return nil, err