Bump go-yaml version to cover fixed ddos heuristic

[petrkotas]

This PR bumbs go-yaml to v2.2.4, which has the ddos vulnerability fixed.

Issue:
go-yaml preceding 2.2.4 had vulnerability to ddos attack via billion
laughs bomb.
Such attack lead to program to be unresponsive.
Issue has been described in
https://raesene.github.io/blog/2019/10/15/From-stackoverflow-to-CVE/

Signed-off-by: Petr Kotas petr.kotas@gmail.com

[codecov]

Codecov Report

Merging #38 into master will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master      #38   +/-   ##
=======================================
  Coverage   89.62%   89.62%           
=======================================
  Files          12       12           
  Lines        1099     1099           
=======================================
  Hits          985      985           
  Misses         90       90           
  Partials       24       24

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update c3d0f78...77506cb. Read the comment docs.