.github/workflows/container-cve-scan-development.yml

@@ -98,10 +98,13 @@ jobs:
             echo "Docker Hub Scout scan skipped: DOCKERHUB_USERNAME/DOCKERHUB_TOKEN not set." > scout-backend.txt
             exit 0
           fi
+          if [ ! -f "$HOME/.docker/config.json" ]; then
+            echo "Docker Hub Scout scan skipped: docker login config not found in runner." > scout-backend.txt
+            exit 0
+          fi
           docker run --rm \
             -v /var/run/docker.sock:/var/run/docker.sock \
-            -e DOCKER_SCOUT_HUB_USER="${{ secrets.DOCKERHUB_USERNAME }}" \
+            -v "$HOME/.docker:/root/.docker:ro" \
-            -e DOCKER_SCOUT_HUB_PAT="${{ secrets.DOCKERHUB_TOKEN }}" \
             docker/scout-cli:latest cves nexapg-backend:dev-scan \
             --only-severity critical,high,medium,low > scout-backend.txt
 
@@ -111,10 +114,13 @@ jobs:
             echo "Docker Hub Scout scan skipped: DOCKERHUB_USERNAME/DOCKERHUB_TOKEN not set." > scout-frontend.txt
             exit 0
           fi
+          if [ ! -f "$HOME/.docker/config.json" ]; then
+            echo "Docker Hub Scout scan skipped: docker login config not found in runner." > scout-frontend.txt
+            exit 0
+          fi
           docker run --rm \
             -v /var/run/docker.sock:/var/run/docker.sock \
-            -e DOCKER_SCOUT_HUB_USER="${{ secrets.DOCKERHUB_USERNAME }}" \
+            -v "$HOME/.docker:/root/.docker:ro" \
-            -e DOCKER_SCOUT_HUB_PAT="${{ secrets.DOCKERHUB_TOKEN }}" \
             docker/scout-cli:latest cves nexapg-frontend:dev-scan \
             --only-severity critical,high,medium,low > scout-frontend.txt