feat(cargo-audit): install fresh cargo-audit on test run

In order to prevent future `cargo-audit` failures of reading new
new security database disclosures, remove `cargo-audit` from dev
container and always try to install `cargo-audit` from source
instaed. This makes CI always use new version of the binary while for
normal development, local version will be used (so no `--force` flag).

Signed-off-by: Egor Lazarchuk <yegorlz@amazon.co.uk>

Author: ShadowCurse

tests/integration_tests/security/test_sec_audit.py

@@ -35,6 +35,6 @@ def set_of_vulnerabilities(output: CommandReturn):
         )
 
     git_ab_test_host_command_if_pr(
-        "cargo audit --deny warnings -q --json",
+        "cargo install --locked cargo-audit && cargo audit --deny warnings -q --json",
         comparator=set_did_not_grow_comparator(set_of_vulnerabilities),
     )

tools/devctr/Dockerfile

@@ -120,7 +120,7 @@ RUN curl https://sh.rustup.rs -sSf | sh -s -- -y --profile minimal --default-too
     && rustup target add x86_64-unknown-linux-musl \
     && rustup target add aarch64-unknown-linux-musl \
     && rustup component add llvm-tools-preview clippy rustfmt \
-    && cargo install --locked cargo-audit grcov cargo-sort cargo-afl \
+    && cargo install --locked grcov cargo-sort cargo-afl \
     && cargo install --locked cargo-deny --version 0.17.0 \
     && cargo install --locked kani-verifier && cargo kani setup \
     \