scan-images #63

	name: scan-images

	on:
	schedule:
	- cron: "0 12 * * 1"

	# Remove all permissions from GITHUB_TOKEN except metadata.
	permissions: {}

	jobs:
	scan:
	name: Trivy
	runs-on: ubuntu-latest
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
	with:
	egress-policy: audit

	- name: Check out code
	uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # tag=v4.1.7
	- name: Setup go
	uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
	with:
	go-version: 1.22
	- name: Run verify container script
	run: make verify-container-images

Provide feedback