Run `scan-binary` on a full repo/archive mirror

...so we can find potential problematic app builds sooner.