diff --git a/.github/workflows/check_build.yml b/.github/workflows/check_build.yml
index 5f13de01..f4c0bbcb 100644
--- a/.github/workflows/check_build.yml
+++ b/.github/workflows/check_build.yml
@@ -14,8 +14,18 @@ jobs:
         name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v3
       -
-        name: Build and push
+        name: Build
         uses: docker/build-push-action@v6
         with:
           push: false
-          tags: ee2/test:test
\ No newline at end of file
+          tags: 'docker.io/kbase/ee2:${{ github.sha }}'
+      - 
+        name: Run Trivy vulnerability scanner
+        uses: aquasecurity/trivy-action@0.28.0
+        with:
+          image-ref: 'docker.io/kbase/ee2:${{ github.sha }}'
+          format: 'table'
+          exit-code: '1'
+          ignore-unfixed: true
+          vuln-type: 'os,library'
+          severity: 'CRITICAL,HIGH'