ci(osv-scan): fail only for vulnerabilities above threshold

ci(osv-scan): fail only for vulnerabilities above threshold #300