The vulnerability scanning is performed by gosec, which is an open source security checker. The gosec package can be utilized through github actions and used in a workflow.
RajathInuganti