fix: re-enable trivvy docker scan

[jsjoeio]

This PR re-enables the trivy Docker scan as part of our CI pipeline. With this, we will have trivy do a security check on our Docker image tagged latest so that we can catch any security vulnerabilities.

Testing

Example scan: https://github.com/coder/code-server/runs/5428919398?check_suite_focus=true

Previous Context

@code-asher I were chatting about this. We want the scan to run on latest instead of the local build since the local build will use the newest dependencies. Instead, we want to check what's in production and ensure that it has no issues. We'll run this new workflow nightly (once a day) and check for any issues. This way, we can stay on top of the Docker image and fix things sooner.

Fixes #4903

[codecov]

Codecov Report

Merging #4943 (b5ca887) into main (f0faa22) will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##             main    #4943   +/-   ##
=======================================
  Coverage   70.30%   70.30%           
=======================================
  Files          29       29           
  Lines        1677     1677           
  Branches      371      371           
=======================================
  Hits         1179     1179           
  Misses        424      424           
  Partials       74       74           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update f0faa22...b5ca887. Read the comment docs.

[github-actions]

✨ Coder.com for PR #4943 deployed! It will be updated on every commit.

• Host: https://codercom-eg07p89ru-codercom.vercel.app/docs/code-server
• Last deploy status: success
• Commit: b5ca887
• Workflow status: https://github.com/coder/code-server/actions/runs/1936175865

[code-asher]

Awesome!