Update main.yml

.github/workflows/main.yml

@@ -45,24 +45,24 @@ jobs:
    - name: Build Docker Image
      run: docker build -f Dockerfile -t myapp:latest .
 
-   # - name: Docker Scout Scan
-     # run: |
-       # curl -fsSL https://raw.githubusercontent.com/docker/scout-cli/main/install.sh -o install-scout.sh
-       # sh install-scout.sh
+   - name: Docker Scout Scan
+     run: |
+       curl -fsSL https://raw.githubusercontent.com/docker/scout-cli/main/install.sh -o install-scout.sh
+       sh install-scout.sh
 
-       # echo ${{ secrets.REPO_PWD }} | docker login -u ${{ secrets.REPO_USER }} --password-stdin
+       echo ${{ secrets.REPO_PWD }} | docker login -u ${{ secrets.REPO_USER }} --password-stdin
        
-       # docker scout quickview
-       # docker scout cves
+       docker scout quickview
+       docker scout cves
 
-   - name: Docker Scout Scan
-     uses: docker/[email protected]
-     with:
-       dockerhub-user: ${{ secrets.REPO_USER }}
-       dockerhub-password: ${{ secrets.REPO_PWD }}
-       command: quickview,cves
-       only-severities: critical,high
-       sarif-file: scout-report.sarif
+   # - name: Docker Scout Scan
+     # uses: docker/[email protected]
+     # with:
+       # dockerhub-user: ${{ secrets.REPO_USER }}
+       # dockerhub-password: ${{ secrets.REPO_PWD }}
+       # command: quickview,cves
+       # only-severities: critical,high
+       # sarif-file: scout-report.sarif
 
    - name: Upload Artifact
      uses: actions/upload-artifact@v3