Security Scanning for Docker images
Description
Our best practices are to create a Docker image when building an app, store in the GitLab registry and then use it to deploy to k8s. We should check the vulnerabilities on the image before deploy.
Proposal
Implement a pipeline job to check with Clair if the image has vulnerabilities, and show them to the user.
Edited by Fabio Busatto