fix: Package lock #16

	name: 🚀 Build, Scan, and Publish Docker Image

	on:
	push:
	branches: [main]
	tags:
	- 'v..*'

	jobs:
	build-scan-push:
	runs-on: ubuntu-latest

	steps:
	- name: 🛒 Checkout code
	uses: actions/checkout@v4

	- name: 🔑 Login to DockerHub
	uses: docker/login-action@v3
	with:
	username: ${{ secrets.DOCKER_USERNAME }}
	password: ${{ secrets.DOCKER_PASSWORD }}

	- name: 🏷️ Extract Docker metadata
	id: meta
	uses: docker/metadata-action@v5
	with:
	images: xqbuilds/autoproject
	tags: \|
	type=raw,value=latest,enable={{is_default_branch}}
	type=semver,pattern={{version}}

	- name: 🏗️ Set up Docker Buildx
	uses: docker/setup-buildx-action@v3

	- name: 🛡️ Trivy Scan (pre-push, non-blocking)
	continue-on-error: true
	uses: aquasecurity/trivy-action@master
	with:
	image-ref: xqbuilds/autoproject:latest
	format: table
	severity: CRITICAL,HIGH

	- name: 🏗️ Build & Push (multi-arch)
	uses: docker/build-push-action@v6
	with:
	context: .
	platforms: linux/amd64,linux/arm64
	push: true
	tags: ${{ steps.meta.outputs.tags }}
	labels: ${{ steps.meta.outputs.labels }}

Provide feedback