ci: disable caching for actions/setup-go

This mitigates a potential cache-poisoning attack. For details, see:
https://docs.zizmor.sh/audits/#cache-poisoning

Signed-off-by: Daniel Hast <hast.daniel@protonmail.com>

.github/workflows/mac-pkg.yml

@@ -111,6 +111,7 @@ jobs:
       uses: actions/setup-go@v6
       with:
         go-version: stable
+        cache: false
     - name: Create Keychain
       if: >-
         steps.check.outputs.buildamd == 'true' ||

.github/workflows/release-artifacts.yml

@@ -112,6 +112,7 @@ jobs:
         uses: actions/setup-go@v6
         with:
           go-version: stable
+          cache: false
 
       - name: Setup artifact directory
         if: >-

.github/workflows/release.yml

@@ -77,6 +77,7 @@ jobs:
       uses: actions/setup-go@v6
       with:
         go-version: stable
+        cache: false
     - name: Set up pandoc
       run: |
           sudo apt-get install -y pandoc
@@ -115,6 +116,7 @@ jobs:
       uses: actions/setup-go@v6
       with:
         go-version: stable
+        cache: false
     - name: Create Keychain
       run: |
         echo $APPLICATION_CERTIFICATE | base64 --decode -o appcert.p12
@@ -175,6 +177,7 @@ jobs:
       uses: actions/setup-go@v6
       with:
         go-version: stable
+        cache: false
     - name: Set up WiX
       run: dotnet tool install --global wix
     - name: Setup Signature Tooling

.github/workflows/upload-win-installer.yml

@@ -92,6 +92,7 @@ jobs:
       if: steps.check.outputs.already-exists != 'true' || steps.actual_dryrun.outputs.dryrun == 'true'
       with:
         go-version: stable
+        cache: false
     - name: Set up WiX
       run: dotnet tool install --global wix
     - name: Setup Signature Tooling