ci(gha): add steps to perform container image scan

abhisheksr01 · abhisheksr01 · commit b2eecb71e4c7 · 2025-09-07T01:56:07.000+01:00
diff --git a/.github/workflows/pipeline.yml b/.github/workflows/pipeline.yml
@@ -219,17 +219,21 @@ jobs:
 #        if: ${{ steps.bump-version.outputs.is-dryrun-version-bumped == 'true' }}
         uses: docker/build-push-action@v6
         with:
-          push: false
+          load: true
           tags: ${{ steps.meta.outputs.tags }}
           labels: ${{ steps.meta.outputs.labels }}
           sbom: true
           provenance: true
       - name: Convert Image to Tar
-        run: docker save -o companieshouse.tar ${{ steps.meta.outputs.tags }}
+        run: |
+          docker images
+          tags="${{ steps.meta.outputs.tags }}"
+          tags="${tags//,/ }"        # replace commas with spaces
+          echo "Saving images: $tags"
       - name: Scan Image
         uses: aquasecurity/trivy-action@0.33.1
         with:
-          image-ref: companieshouse.tar
+          image-ref: ${{ steps.meta.outputs.tags }}
           format: 'table'
           exit-code: '1'
           ignore-unfixed: true
