ci: remove Trivy vulnerability scanning from CI workflow

- Remove Trivy vulnerability scanning and upload of scan results to GitHub Security tab from the workflow

Signed-off-by: appleboy <appleboy.tw@gmail.com>

Author: appleboy

.github/workflows/docker.yml

@@ -75,21 +75,6 @@ jobs:
           load: true
           tags: drone-ssh:scan
 
-      - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
-        with:
-          image-ref: "drone-ssh:scan"
-          format: "sarif"
-          output: "trivy-results.sarif"
-          severity: "CRITICAL,HIGH"
-          exit-code: "1"
-
-      - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v3
-        if: always()
-        with:
-          sarif_file: "trivy-results.sarif"
-
       - name: Build and push
         if: success()
         uses: docker/build-push-action@v6