Fix vulnerability report artifacts CI config
I was seeing only SAST vulnerabilities in the Group Security Dashboard in my local copy of this repo. See relevant Slack discussion.
This implements the documented dep, licence, dast container syntax for vulnerability reports.
Edited by Mark Florian