Include scanning for vulnerabilities in the CI pipeline, e.g. using [trivy](https://github.com/aquasecurity/trivy-action?tab=readme-ov-file#usage).
