ci: adjust scanner actions

[NARSimoes]

Summary

Adjusting scanner actions, I'll add a follow up to introduce a new one.

Release Note

Summary by CodeRabbit

• Chores
  • Removed automated security vulnerability scanning from Docker image build workflows

[mm-cloud-bot]

@NARSimoes: Adding the "do-not-merge/release-note-label-needed" label because no release-note block was detected, please follow our release note process to remove it.

Details

I understand the commands that are listed here

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 0df22901-157c-4fe4-b6b9-808bf227d6ea

📥 Commits

Reviewing files that changed from the base of the PR and between ad9ee93 and 3067ba3.

📒 Files selected for processing (2)

• .github/actions/docker-build/action.yaml
• Makefile

💤 Files with no reviewable changes (2)

• Makefile
• .github/actions/docker-build/action.yaml

---

📝 Walkthrough

Walkthrough

Removes Trivy security scanning steps from the Docker build composite GitHub action and eliminates the corresponding Trivy target and configuration variables from the Makefile, simplifying the CI/CD pipeline's security scanning workflow.

Changes

Cohort / File(s)	Summary
Trivy Security Scanning Removal .github/actions/docker-build/action.yaml, Makefile	Deletes two Trivy security scanning steps from the Docker build action (cd/scan-docker-security and cd/scan-docker-security-e2e) and removes the trivy target along with TRIVY_SEVERITY, TRIVY_EXIT_CODE, and TRIVY_VULN_TYPE variable definitions from the Makefile.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 inconclusive)

Check name	Status	Explanation	Resolution
Title check	❓ Inconclusive	The title 'ci: adjust scanner actions' is partially related to the changeset but lacks specificity about the main change, which is the removal of Trivy security scanning steps.	Consider a more specific title such as 'ci: remove Trivy security scanning from docker-build and Makefile' to clearly convey the primary change.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch nasimoes-ci-aqua

📝 Coding Plan

• Generate coding plan for human review comments

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}