Perform weekly Snyk scan on image from GHCR

Author: pvannierop

.github/workflows/scheduled-snyk-docker.yaml

@@ -6,14 +6,17 @@ on:
   workflow_dispatch:
 
 env:
-  DOCKER_IMAGE: radarbase/radar-output-restructure
+  DOCKER_IMAGE: ghcr.io/${{ github.repository }}/radar-output-restructure
 
 jobs:
   security:
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      security-events: write
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Run Snyk to check for vulnerabilities
         continue-on-error: true # To make sure that SARIF upload gets called