add GH action trivy scan

Author: dzmitry.vashkinel

.github/workflows/trivy-scan.yaml

@@ -0,0 +1,28 @@
+name: Trivy Scan
+
+on:
+  #pull_request:
+  #  branches:
+  #    - main
+  #    - master
+  #    - develop
+  push:
+    branches:
+      - sp-9923-repo-scan
+
+jobs:
+  trivy-scan:
+    name: Scanner
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v3
+
+    - name: Run Trivy vulnerability scanner in fs mode
+      uses: aquasecurity/trivy-action@master
+      with:
+        scan-type: 'fs'
+        exit-code: '1'
+        ignore-unfixed: true
+        severity: 'CRITICAL,HIGH,MEDIUM,LOW'
+