feat: use esp-idf-sbom-action for vulnerability scan

[fhrbata]

This replaces the current approach to use the new esp-idf-sbom-action.

Checklist

• [ ] Component contains License
• [ ] Component contains README.md
• [ ] Component contains idf_component.yml file with url field defined
• [ ] Component was added to upload job
• [ ] Component was added to build job
• [ ] Optional: Component contains unit tests
• [ ] CI passing

Change description

Please describe your change here

[fhrbata]

LGTM!

@fhrbata Do you need some help setting up the repository secrets?

@tomassebestik yes, I count on your help once this gets merged :). Thank you for the review and all the help.

[fhrbata]

Hi @mahavirj , do you have any objections to this? Thank you very much!

[fhrbata]

Hi @mahavirj , do you have any objections to this? Thank you very much!

Hi @mahavirj , it looks like we have everything set. Do you think this can be merged? Thank you very much!