**Description:** Integrate security scanning capabilities into the validation pipeline. **Acceptance Criteria:** - [ ] Security scanning of all packages dependencies - [ ] Python vulnerability scanning implemented using `pip-audit` or equivalent - [ ] Docker image security validation using `trivy` or similar tool - [ ] System package security checks integrated with CVE databases - [ ] Standardized security report format with severity levels and remediation advice - [ ] Integration with CI package verification workflow for automated security scoring - [ ] Also using tools like Code QL or other major security scanners? **Dependencies:** - Requires Issue #8
Description:
Integrate security scanning capabilities into the validation pipeline.
Acceptance Criteria:
pip-auditor equivalenttrivyor similar toolDependencies: