Update sigstore/cosign-installer action to v4 #105

	name: Go Vulnerability Check

	on:
	pull_request:
	paths-ignore:
	- 'docs/**'
	- 'charts/**'
	push:
	branches:
	- master
	paths-ignore:
	- 'docs/**'
	- 'charts/**'
	schedule:
	# Run weekly on Monday to catch newly disclosed vulnerabilities
	- cron: '0 8 * * 1'

	jobs:
	govulncheck:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v6

	- name: Determine Go version from go.mod
	run: echo "GO_VERSION=$(go mod edit -json \| jq -r .Go)" >> $GITHUB_ENV

	- uses: actions/setup-go@v6
	with:
	go-version: ${{ env.GO_VERSION }}

	- name: Install govulncheck
	run: go install golang.org/x/vuln/cmd/govulncheck@latest

	- name: Run govulncheck
	run: govulncheck ./...

Provide feedback