Only execute CS scans on latest major release and when scheduled
What does this MR do?
Modify CI configuration for Container Scanning job (actual scanning of this project's images to report vulnerabilities) so that:
- it only runs on scheduled pipelines (not on branches/MRs)
- it scans the latest major version of the published images
What are the relevant issue numbers?
Does this MR meet the acceptance criteria?
-
Changelog trailer added -
Documentation created/updated for GitLab EE, if necessary -
Documentation created/updated for this project, if necessary -
Documentation reviewed by technical writer or follow-up review issue created -
Tests added for this feature/bug -
Job definition updated, if necessary -
Conforms to the code review guidelines -
Conforms to the Go guidelines -
Security reports checked/validated by reviewer