Added pipeline image scan

.gitea/workflows/image-scan.yaml

@@ -12,7 +12,7 @@ env: # global: unkritische, strukturgebende Variablen
   CONTAINER_NAME: localhost/valtrix-website
 
 jobs:
-  build_and_deploy:
+  scan_image:
     runs-on: ubuntu-latest
     env: # Job-spezifisch: Secrets und sensible Werte
       SSH_PRIVATE_KEY: ${{ secrets.SSH_PRIVATE_KEY }}
@@ -31,12 +31,12 @@ jobs:
           (ssh-keygen -F "$TARGET_HOST" >/dev/null || ssh-keyscan -H "$TARGET_HOST" >> ~/.ssh/known_hosts) || true
           (ssh-keygen -F gitea.smb-corp.de >/dev/null || ssh-keyscan -H gitea.smb-corp.de >> ~/.ssh/known_hosts) || true
           
-      - name: Build container on target host
+      - name: Scan container image with Trivy
         shell: bash
         run: |
           ssh -i ~/.ssh/id_ed25519 $TARGET_USER@$TARGET_HOST "
             set -euo pipefail
             export CONTAINER_NAME='$CONTAINER_NAME'
             echo 'Start Trivy Scan: '\$CONTAINER_NAME '
-            trivy image \$CONTAINER_NAME:latest
+            trivy image localhost/valtrix-website:latest
           "