From 8fb2e3c169d0a44037261339a2e2f70d4648f79d Mon Sep 17 00:00:00 2001
From: Ivan <ivan@quad4.io>
Date: Tue, 31 Mar 2026 06:07:25 +0300
Subject: [PATCH] feat(ci): add Trivy scan for Dockerfile misconfigurations

---
 .gitea/workflows/scan.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.gitea/workflows/scan.yml b/.gitea/workflows/scan.yml
index 7901f4f..c9cac42 100644
--- a/.gitea/workflows/scan.yml
+++ b/.gitea/workflows/scan.yml
@@ -56,3 +56,6 @@ jobs:
 
             - name: Trivy FS scan
               run: trivy fs --exit-code 1 --skip-dirs .pnpm-store .
+
+            - name: Trivy Dockerfile misconfiguration
+              run: trivy config --exit-code 1 Dockerfile