feat: implement better clean up strategy

[Ron (rjaegers)]

🚀 Hey, I have created a Pull Request

Description of changes

This PR implements a better cleanup strategy for container images by replacing the existing bots-house/ghcr-delete-image-action with dataaxiom/ghcr-cleanup-action and adding a new scheduled workflow for general image cleanup.

From now on a regular cron job will run, next to the already present PR image cleanup, to remove orphaned and untagged images. This means all images that are not part of a parent with a tag will be removed. Including multi-arch images and attestations and signatures.

✔️ Checklist

• I have followed the contribution guidelines for this repository
• I have added tests for new behavior, and have not broken any existing tests
• I have added or updated relevant documentation
• I have verified that all added components are accounted for in the SBOM

[Copilot]

Pull Request Overview

This PR implements a better cleanup strategy for container images by replacing the existing bots-house/ghcr-delete-image-action with dataaxiom/ghcr-cleanup-action and adding a new scheduled workflow for general image cleanup.

• Replaces the custom login and deletion logic with a more specialized GitHub Container Registry cleanup action
• Removes the matrix strategy for handling multiple flavors, consolidating cleanup into a single step
• Adds a new scheduled workflow that runs daily to clean up orphaned images with dry-run enabled

Reviewed Changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 2 comments.

File	Description
.github/workflows/pr-image-cleanup.yml	Simplifies PR-specific image cleanup by replacing multiple actions with a single specialized cleanup action
.github/workflows/image-cleanup.yml	Adds new scheduled workflow for general image cleanup with orphaned image detection

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[github-actions]

📦 Container Size Analysis

Comparing ghcr.io/philips-software/amp-devcontainer-rust:edge to ghcr.io/philips-software/amp-devcontainer-rust:pr-926

📈 Size Comparison Table

OS/Platform	Previous Size	Current Size	Change	Trend
linux/amd64	524.67M	524.67M	0.00 (+0.00%)	🔄
linux/arm64	470.36M	470.36M	0.00 (+0.00%)	🔄

[github-actions]

📦 Container Size Analysis

Comparing ghcr.io/philips-software/amp-devcontainer-cpp:edge to ghcr.io/philips-software/amp-devcontainer-cpp:pr-926

📈 Size Comparison Table

OS/Platform	Previous Size	Current Size	Change	Trend
linux/amd64	658.14M	658.14M	0.00 (+0.00%)	🔄
linux/arm64	642.11M	642.11M	0.00 (+0.00%)	🔄

[github-actions]

🦙 MegaLinter status: ⚠️ WARNING

Descriptor	Linter	Files	Fixed	Errors	Warnings	Elapsed time
✅ ACTION	actionlint	19		0	0	0.51s
✅ DOCKERFILE	hadolint	2		0	0	0.8s
✅ GHERKIN	gherkin-lint	2		0	0	1.01s
✅ JSON	npm-package-json-lint	yes		no	no	0.32s
✅ JSON	prettier	15	2	0	0	0.34s
✅ JSON	v8r	15		0	0	101.32s
✅ MARKDOWN	markdownlint	9	0	0	0	0.82s
✅ MARKDOWN	markdown-table-formatter	9	0	0	0	0.28s
✅ REPOSITORY	checkov	yes		no	no	14.95s
✅ REPOSITORY	gitleaks	yes		no	no	0.43s
✅ REPOSITORY	git_diff	yes		no	no	0.01s
⚠️ REPOSITORY	grype	yes		no	1	25.71s
✅ REPOSITORY	secretlint	yes		no	no	0.95s
✅ REPOSITORY	syft	yes		no	no	1.87s
✅ REPOSITORY	trivy	yes		no	no	5.36s
✅ REPOSITORY	trivy-sbom	yes		no	no	0.24s
✅ REPOSITORY	trufflehog	yes		no	no	3.28s
✅ SPELL	lychee	62		0	0	1.73s
✅ YAML	prettier	25	0	0	0	0.91s
✅ YAML	v8r	25		0	0	13.09s
✅ YAML	yamllint	25		0	0	0.62s

See detailed report in MegaLinter reports

[github-actions]

Test Results

 4 files  ±0   4 suites  ±0   2m 24s ⏱️ -1s
30 tests ±0  30 ✅ ±0  0 💤 ±0  0 ❌ ±0 
64 runs  ±0  64 ✅ ±0  0 💤 ±0  0 ❌ ±0 

Results for commit b2ccc33. ± Comparison against base commit deb97bf.

♻️ This comment has been updated with latest results.

[Copilot]

Pull Request Overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated no new comments.

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

Pull Request Report (#926)

Static measures

Description	Value
Number of added lines	33
Number of deleted lines	16
Number of changed files	2
Number of commits	10
Number of reviews	4
Number of comments (w/o review comments)	5
Number of reviews that contains a comment to resolve	3
Number of reviews that requested a change from the author	0
Number of reviews that approved the Pull Request	1
Get the total number of participants of a Pull Request	6

Time related measures

Description	Value
PR lead time (from creation to close of PR)	21.8 Hours
Time that was spend on the branch before the PR was created	25.9 Min
Time that was spend on the branch before the PR was merged	22.2 Hours
Time to merge after last review	44.3 Min

Status check related measures

Description	Value
Total runtime for last status check run (Workflow for PR)	32.7 Min
Total time spend in last status check run on PR	11.4 Min

[github-actions]

🎉 Hooray! The changes in this pull request went live with the release of v6.4.0 🎉

[github-actions]

🎉 Hooray! The changes in this pull request went live with the release of v6.4.1 🎉