Bring SAST to Core - ESLint security plugin

Full requirements listing in &2098 (closed)

Scope of this issue specifically

ESLint security plugin scanning, when Docker-in-Docker is disabled - SAST_DISABLED_DIND = true

Plan

Implementation Plan

1. Update SAST vendored template
   • Remove check for /sast/ in features for the brakeman analyzers for the DIND-free version.
2. Update documentation (Explicitly stating that we will not be supporting eslint in Core when Docker-in-Docker is enabled)
3. Update license for the repository from EE License to MIT Expat Minor Version Bump

Test Plan

1. Test analyzers as a core user
   • Verify Capability table from Epic
2. Test analyzers as an ultimate user
   • Verify Capability table from Epic
3. • Ensure support for downloading artifact