chore(rel/v3.x): release 3.16.0

[github-actions]

🤖 I have created a release beep boop

3.16.0 (2026-03-23)

Features

• fcli fod dast-scan start: Add --vpn option to select Fortify Connect network name (0d66c01)
• fcli fod oss-scan download-latest: Add --format option to support selecting CycloneDX or SPDX SBOM formats (dee92ef)
• fcli fod oss-scan download: Add --format option to support selecting CycloneDX or SPDX SBOM formats (dee92ef)
• fcli fod sast-scan import-sarf: new command to support importing SAST scan results in SARIF format (dee92ef)
• fcli ssc access-control update-local-user: New command for updating a local SSC user (0809f3a)
• fcli ssc issue update: New command for updating/auditing SSC issues (f33d814)
• fcli tool sourceanalyzer: New commands to register pre-installed sourceanalyzer installation, and running sourceanalyzer and rule pack update commands (e5d9e98)

Bug Fixes

• fcli action run ci: Use ephemeral encryption key for sensitive (session) files (fixes #949) (5b7c085)
• fcli fod dast-scan start: Fix DAST scan not starting first time when using fcli (fixes #917) (0d66c01)
• fcli fod microservice create: Disallow microservice creation on non-microservice application (fixes #873) (0d66c01)
• fcli tool sc-client install: Fix --with-jre option being ignored (8db476c)
• fcli action framework: Clear progress before writing checks output (be3c1ae)
• fcli action framework: Return exit code 100 for FAIL status on check instructions (fixes #950) (8467063)
• Fix ANSI color output on Windows (7111525)
• Fix multithreading issues (fixes #925) (4cfd2dd)
• harden GitHub Actions workflows against script injection and privilege escalation (f018e4a)
• reduce build job permissions, add run-id validation, pin update-repo-docs workflow SHA (6ac448e)

---

This PR was generated with Release Please. See documentation.