scan-images #24

	name: scan-images

	on:
	schedule:
	- cron: "0 12 * * 1"

	# Remove all permissions from GITHUB_TOKEN except metadata.
	permissions: {}

	jobs:
	scan:
	name: Trivy
	runs-on: ubuntu-latest
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # v2.5.1
	with:
	egress-policy: audit

	- name: Check out code
	uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # tag=v4.0.0
	- name: Setup go
	uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
	with:
	go-version: 1.20
	- name: Run verify container script
	run: make verify-container-images

Provide feedback