diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 9d5849fd..26b92264 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -4,7 +4,7 @@ on: [push]
 
 jobs:
   sast_scan:
-    name: Rub bandit scan
+    name: Run bandit scan
     runs-on: ubuntu-latest
 
     steps:
@@ -28,3 +28,26 @@ jobs:
       with:
         name: bandit-findings
         path: bandit-report.json
+
+  image_scan:
+    name: build image and run image scan
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v2
+
+      - name: Install docker
+        uses: docker-practice/actions-setup-docker@v1
+        with:
+          docker_version: '20.10.7'
+
+      - name: Build docker image
+        run: docker build -f Dockerfile -t muapp:latest .
+
+      - name: Scan image
+        run: |
+          curl -fsSL https://raw.githubusercontent.com/docker/scout-cli/main/install.sh -o install-scout.sh
+          sh install-scout.sh
+          docker scout quickview
+          docker scout cves