Fix gosec slice bounds warnings

[asayyah]

Add nolint directives for safe slice accesses where bounds are guaranteed by fixed-size arrays or prior bounds checks.

[codecov]

Codecov Report

❌ Patch coverage is 76.47059% with 4 lines in your changes missing coverage. Please review.
✅ Project coverage is 81.27%. Comparing base (7b9612e) to head (4ccbed6).
⚠️ Report is 1 commits behind head on master.

Files with missing lines	Patch %	Lines
pkg/protocol/extension/extension.go	80.00%	1 Missing and 2 partials ⚠️
pkg/crypto/ccm/ccm.go	0.00%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master     #764      +/-   ##
==========================================
+ Coverage   81.26%   81.27%   +0.01%     
==========================================
  Files         101      101              
  Lines        5603     5602       -1     
==========================================
  Hits         4553     4553              
+ Misses        676      675       -1     
  Partials      374      374              

Flag	Coverage Δ
go	81.27% <76.47%> (+0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[JoTurk]

Nit: even if it will prob never matter performance wise, and will likely be optimized by the compiler, the temporary slice is unnecessary. even if we'll have to add nolint. would prefer something like out[0], out[1] = m.Version.Major, m.Version.Minor // nolint...

but that's up to you.

[asayyah]

yeah that's a good point, fixed it! thank you!

[JoTurk]

cool.