Pin and update regularly the clair scanner executable

Summary

In our vendored template for Container Scanning we download the clair-scanner executable at runtime.

The version here is hardcoded to be the v8.

What is the current bug behavior?

Clair scanner version is hardcoded to v8 and never updated.

What is the expected correct behavior?

Clair scanner version is using a variable that is checked monthly for available updates.

Possible fixes

Use a variable and update it regularly, like CLAIR_LOCAL_SCAN_VERSION