[Chore]: Move security vulnerabilities workflow out of ci.yaml

[jsjoeio]

What is your suggestion?

Move security vulnerabilities workflow out of ci.yaml

Why do you want this feature?

and it can be frustrating to make a doc change or something and have your pr fail because someone found a security issue in some dependency the other day

@code-asher and I were discussing this the other day.

Are there any workarounds to get this functionality today?

Yeah, you have to open a separate PR to fix the vulnerability, merge that then rebase your other PR.

Are you interested in submitting a PR for this?

Happy to do this