BN-35 | Fix. Trivy scanning to scan local image

Author: mohan-13

.github/workflows/build-and-publish.yml

@@ -51,22 +51,29 @@ jobs:
           username: ${{ github.actor }}
           password: ${{ secrets.GITHUB_TOKEN }}
 
-      - name: Build and push Docker image
+      - name: Build Docker image
         uses: docker/build-push-action@v5
         with:
           context: .
-          push: true
-          tags: ghcr.io/bahnew/clinical-frontend:latest
+          push: false
+          load: true
+          tags: clinical-frontend:local
           cache-from: type=gha
           cache-to: type=gha,mode=max
 
       - name: Scan Docker image for vulnerabilities
-        uses: aquasecurity/trivy-action@0.16.1
+        uses: aquasecurity/trivy-action@0.30.0
         with:
-          image-ref: 'ghcr.io/bahnew/clinical-frontend:latest'
+          image-ref: 'clinical-frontend:local'
           format: 'table'
           exit-code: '1'
           severity: 'CRITICAL,HIGH'
+          
+      - name: Tag and push Docker image
+        run: |
+          docker tag clinical-frontend:local ghcr.io/bahnew/clinical-frontend:latest
+          docker push ghcr.io/bahnew/clinical-frontend:latest
+
 
       - name: Repository Dispatch
         run: |