Problem
SecuScan needs a production-grade improvement in this area: Container release safety..
Scope
Scan backend/frontend images, fail on critical vulnerabilities, check non-root user, and document base-image update policy.
Acceptance Criteria
- The implementation is focused and does not introduce unrelated UI, docs, lockfile, or formatting churn.
- Security-sensitive behavior has explicit negative tests where applicable.
- Existing tests continue to pass, and new tests cover the main success and failure paths.
- Documentation or configuration examples are updated when operator behavior changes.
Verification
CI should publish vulnerability reports and fail on a synthetic or known critical baseline only when policy requires.
Difficulty
Hard, useful issue intended for experienced contributors.
Problem
SecuScan needs a production-grade improvement in this area: Container release safety..
Scope
Scan backend/frontend images, fail on critical vulnerabilities, check non-root user, and document base-image update policy.
Acceptance Criteria
Verification
CI should publish vulnerability reports and fail on a synthetic or known critical baseline only when policy requires.
Difficulty
Hard, useful issue intended for experienced contributors.