ci(govulncheck): workaround duplicate SARIF tags error

Use `jq` to deduplicate tags in the SARIF file
generated by `govulncheck` before uploading,
preventing validation failures in GitHub Actions.

Signed-off-by: Dwi Siswanto <git@dw1.io>

.github/workflows/govulncheck.yaml

@@ -19,7 +19,9 @@ jobs:
       - uses: actions/checkout@v6
       - uses: projectdiscovery/actions/setup/go@v1
       - run: go install golang.org/x/vuln/cmd/govulncheck@latest
-      - run: govulncheck -scan package -format sarif ./... > $OUTPUT
+      - run: |
+          govulncheck -scan package -format sarif ./... | \
+            jq '(.runs[].tool.driver.rules[]?.properties.tags)? |= unique' > $OUTPUT
       - uses: github/codeql-action/upload-sarif@v4
         with:
           sarif_file: "${{ env.OUTPUT }}"