scan-images #74

	name: scan-images

	on:
	schedule:
	- cron: "0 12 * * 1"

	# Remove all permissions from GITHUB_TOKEN except metadata.
	permissions: {}

	jobs:
	scan:
	name: Trivy
	runs-on: ubuntu-latest
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
	with:
	egress-policy: audit

	- name: Check out code
	uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # tag=v4.1.7
	- name: Setup go
	uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
	with:
	go-version: 1.22
	- name: Run verify container script
	run: make verify-container-images

Provide feedback