implement container image audit solutions

[rfuelsh]

scan for vulns during docker image building, and skip publishing to ghcr/ecr if there are any open issues / vulns

[rfuelsh]

Few options we have

https://github.com/marketplace/actions/container-scan

https://github.com/marketplace/actions/anchore-container-scan

https://github.com/aquasecurity/trivy

https://github.com/quay/clair

https://github.com/anchore/grype

[Voxelot]

@tirkesi says grype is good

[Voxelot]

we should test out some of these solutions on a repo

[rfuelsh]

https://github.com/FuelLabs/fuel-core/pull/1637

[rfuelsh]

ticket for new SRE engineer

[Voxelot]

closing ticket as this repo will be archived