Added search extension and integrated trivy to support image vulnerability scanning

pkg/extensions/search/cve/BUILD.bazel

@@ -0,0 +1,16 @@
+load("@io_bazel_rules_go//go:def.bzl", "go_library")
+
+go_library(
+    name = "go_default_library",
+    srcs = [
+        "cve.go",
+        "models.go",
+    ],
+    importpath = "github.com/anuvu/zot/pkg/extensions/search/cve",
+    visibility = ["//visibility:public"],
+    deps = [
+        "//pkg/log:go_default_library",
+        "@com_github_aquasecurity_trivy//integration:go_default_library",
+        "@com_github_aquasecurity_trivy//integration/config:go_default_library",
+    ],
+)

pkg/extensions/search/cve/cve.go

@@ -0,0 +1,24 @@
+package cveinfo
+
+import (
+	"github.com/anuvu/zot/pkg/log"
+	integration "github.com/aquasecurity/trivy/integration"
+	config "github.com/aquasecurity/trivy/integration/config"
+)
+
+// UpdateCVEDb ...
+func UpdateCVEDb(dbDir string, log log.Logger) error {
+	config, err := config.NewConfig(dbDir)
+	if err != nil {
+		log.Error().Err(err).Msg("Unable to get config")
+		return err
+	}
+
+	err = integration.RunTrivyDb(config.TrivyConfig)
+	if err != nil {
+		log.Error().Err(err).Msg("Unable to update DB ")
+		return err
+	}
+
+	return nil
+}

pkg/extensions/search/cve/models.go

@@ -0,0 +1,13 @@
+// Package cveinfo ...
+package cveinfo
+
+import (
+	"github.com/anuvu/zot/pkg/log"
+	config "github.com/aquasecurity/trivy/integration/config"
+)
+
+// CveInfo ...
+type CveInfo struct {
+	Log            log.Logger
+	CveTrivyConfig *config.Config
+}