Merge pull request #9 from SecOpsGrogu1/feat/test1

fix4

vuln test

Merge pull request #8 from SecOpsGrogu1/feat/update

fix2

fix

update

Merge pull request #7 from SecOpsGrogu1/feature/add-sarif-workflow

Combine workflows: integrate SARIF scanning into main demo workflow

Add SARIF workflow for vulnerability scanning

Merge pull request #6 from SecOpsGrogu1/feature/security-demo

fix1

fix

No vuln

Add vulnerable and clean Dockerfiles, Trivy pipeline, and documentation