diff --git a/.github/workflows/docker-image.yml b/.github/workflows/docker-image.yml
index 743249f..cc6c8fb 100644
--- a/.github/workflows/docker-image.yml
+++ b/.github/workflows/docker-image.yml
@@ -18,6 +18,12 @@ jobs:
       uses: hadolint/hadolint-action@v3.1.0
       with:
         dockerfile: Dockerfile    
+    - 
+      name: Scan Docker image with Trivy
+      uses: aquasecurity/trivy-action@master
+      with:
+        image-ref: ${{ secrets.DOCKERUSER }}/react-todo-list:${{ github.run_number }}
+        #exit-code-on-severity: "HIGH"        
     -
       name: Login to Docker Hub edgar4all
       uses: docker/login-action@v3