chore: Update go-sarif to v3 from v2

[another-rex]

Updated sarif library to v3 from v2. Still outputting SARIF 2.1 as that is what github supports.

I also changed how sarif_test snapshots are generated in the first commit to make it easier to see the diff, so when reviewing, please see the differences between the first commit and the last one for the snapshots, don't look at the full thing.

Currently it seems like there's an issue with ruleIndex being populated with -1 rather that the actual rule index, not sure why yet, I'll post an issue on the libraries repo.

Solved! Updated to v3.2.0 which resolved the above issue.

[codecov-commenter]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 65.38%. Comparing base (836ab22) to head (fdcba2d).
Report is 12 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1985      +/-   ##
==========================================
- Coverage   65.93%   65.38%   -0.55%     
==========================================
  Files         168      174       +6     
  Lines       16154    17130     +976     
==========================================
+ Hits        10651    11201     +550     
- Misses       4844     5164     +320     
- Partials      659      765     +106     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.