build with golang 1.22.7 to address CVE-2024-34156

[ssmirr]

this high severity CVE was found in current release of esbuild as a result of being built with golang 1.22.5:

┌─────────┬────────────────┬──────────┬────────┬───────────────────┬─────────────────┬─────────────────────────────────────────────────────────────┐
│ Library │ Vulnerability  │ Severity │ Status │ Installed Version │  Fixed Version  │                            Title                            │
├─────────┼────────────────┼──────────┼────────┼───────────────────┼─────────────────┼─────────────────────────────────────────────────────────────┤
│ stdlib  │ CVE-2024-34156 │ HIGH     │ fixed  │ 1.22.5            │ 1.22.7, 1.23.1  │ encoding/gob: golang: Calling Decoder.Decode on a message   │
│         │                │          │        │                   │                 │ which contains deeply nested structures...                  │
│         │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2024-34156                  │

• Bump golang to 1.22.7 in ci workflow (this PR)
• TODO: A follow up release / push to npm would be great after this is merge

[evanw]

Closing in favor of #3902.