fix: fix GitHub Actions security issues pointed out by zizmor

Author: ashishb

.github/workflows/check-goreleaser-config.yaml

@@ -40,7 +40,7 @@ jobs:
       - uses: actions/setup-go@v5
         with:
           go-version: ${{ matrix.go-version }}
-          cache-dependency-path: src/gabo/go.sum
+          cache: false  # Disable caching to avoid cache poisoning
 
       - name: Install Go Releaser
         uses: goreleaser/goreleaser-action@v6

.github/workflows/release-binary.yaml

@@ -35,7 +35,7 @@ jobs:
         uses: actions/setup-go@v5
         with:
           go-version: stable
-          cache-dependency-path: src/gabo/go.sum
+          cache: false  # Disable caching to avoid cache poisoning
 
       - name: Read gabo version name
         id: read-version
@@ -73,7 +73,7 @@ jobs:
       - uses: actions/setup-go@v5
         with:
           go-version: stable
-          cache-dependency-path: src/gabo/go.sum
+          cache: false  # Disable caching to avoid cache poisoning
 
       # More assembly might be required: Docker logins, GPG, etc. It all depends
       # on your needs.

src/gabo/internal/generator/data/check-goreleaser-config.yaml

@@ -46,6 +46,7 @@ jobs:
       - uses: actions/setup-go@v5
         with:
           go-version: ${{ matrix.go-version }}
+          cache: false  # Disable caching to avoid cache poisoning
           cache-dependency-path: src/gabo/go.sum
 
       - name: Install Go Releaser