[security] setup container image scans

[prabhu]

We need to set up regular container image security scans for assessment purposes. Since depscan v6 isn’t ready and cdxgen already uses trivy for SBOM generation, let’s use grype for the scans.