👷 ci: replace snyk with govulncheck (#2178)

.github/workflows/snyk.yml

@@ -1,11 +0,0 @@
-on: [push, pull_request_target]
-name: Snyk security
-jobs:
-  security:
-    runs-on: ubuntu-latest
-    steps:
-    - uses: actions/checkout@v3
-    - name: Run Snyk to check for vulnerabilities
-      uses: snyk/actions/golang@master
-      env:
-        SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}

.github/workflows/vulncheck.yml

@@ -0,0 +1,20 @@
+on: [push, pull_request_target]
+name: Vulnerability Check
+jobs:
+  Security:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Install Go
+      uses: actions/setup-go@v3
+      with:
+        go-version: 1.19.x
+    - name: Fetch Repository
+      uses: actions/checkout@v3
+    - name: Install Govulncheck
+      run: |
+          export GO111MODULE=on
+          export PATH=${PATH}:`go env GOPATH`/bin
+          go install golang.org/x/vuln/cmd/govulncheck@latest
+    - name: Run Govulncheck
+      run: "`go env GOPATH`/bin/govulncheck ./..."
+