v1.14: ci: fix do-audit don't report error (backport of #30728)

[mergify]

This is an automatic backport of pull request #30728 done by Mergify.
Cherry-pick of f8abc8d has failed:

On branch mergify/bp/v1.14/pr-30728
Your branch is up to date with 'origin/v1.14'.

You are currently cherry-picking commit f8abc8df8.
  (fix conflicts and run "git cherry-pick --continue")
  (use "git cherry-pick --skip" to skip this patch)
  (use "git cherry-pick --abort" to cancel the cherry-pick operation)

Changes to be committed:
	modified:   ci/docker-run.sh

Unmerged paths:
  (use "git add <file>..." to mark resolution)
	both modified:   ci/do-audit.sh

To fix up this pull request, you can check it out locally. See documentation: https://docs.github.com/en/github/collaborating-with-pull-requests/reviewing-changes-in-pull-requests/checking-out-pull-requests-locally

---

Mergify commands and options

More conditions and actions can be found in the documentation.

You can also trigger Mergify actions by commenting on this pull request:

• @Mergifyio refresh will re-evaluate the rules
• @Mergifyio rebase will rebase this PR on its base branch
• @Mergifyio update will merge the base branch into this PR
• @Mergifyio backport <destination> will backport this PR on <destination> branch

Additionally, on Mergify dashboard you can:

• look at your merge queues
• generate the Mergify configuration with the config editor.

Finally, you can contact us on https://mergify.com

[mergify]

automerge label removed due to a CI failure

[t-nelson]

we're gonna have to pick the fixes/ignores in behind it

[yihau]

added 3 more commits to fix the audit issue

d4e0d15 => picked from #30886
c0887d3 => updated based on the concept which is from #30727
961ec28 => found an unexpected lock file so make storage-bigtable/build-proto become a root workspace member. (based on #29450 and #30273)

[codecov]

Codecov Report

Merging #31009 (18f3699) into v1.14 (e297b2e) will increase coverage by 0.0%.
The diff coverage is n/a.

@@           Coverage Diff           @@
##            v1.14   #31009   +/-   ##
=======================================
  Coverage    82.1%    82.1%           
=======================================
  Files         664      664           
  Lines      185071   185071           
=======================================
+ Hits       152000   152057   +57     
+ Misses      33071    33014   -57     

[t-nelson]

thanks! follow along in #releng on discord RE updating vs. ignoring. openssl in particular has a quite the delta from where we are today

[t-nelson]

not so fast robit

[t-nelson]

@yihau can you pick the h2 audit fix in here and try to get ci green? i think we're comfortable with taking all of the audit backports

[yihau]

sure! will do it later!

[t-nelson]

nice! ty

let's merge this one without squashing. let me know if branch protection is preventing that

[yihau]

yeah. I can only squash and merge. the protection works well