docs: use sponge #2

	name: Supply chain security
	on:
	pull_request:
	push:
	branches:
	- main
	jobs:
	supply-chain-security:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v4
	- name: Scan for CVEs
	uses: pypa/gh-action-pip-audit@v1.1.0
	with:
	inputs: .

Provide feedback