Cache TrivyDB for 24hrs

* Combined both docker workflows into one because they do the same thing

.github/workflows/docker-test.yml

@@ -1,6 +1,7 @@
-name: Docker test
+name: Run Docker tests
 
 on:
+  pull_request:
   push:
     branches: main
 
@@ -12,6 +13,8 @@ jobs:
     steps:
       - name: Checkout code
         uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
 
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v3
@@ -23,9 +26,20 @@ jobs:
           secrets: github_token=${{ secrets.GITHUB_TOKEN }}
           load: true
           cache-from: type=gha
-          cache-to: type=gha
           push: false
 
+      - name: Get TrivyDB data ## To avoid the trivy-db becoming outdated, we save the cache for one day
+        id: date
+        run: echo "date=$(date +%Y-%m-%d)" >> $GITHUB_OUTPUT
+
+      - name: Restore TrivyDB cache
+        uses: actions/cache@v4
+        with:
+          path: cache/db
+          key: trivy-cache-${{ steps.date.outputs.date }}
+          restore-keys:
+            trivy-cache-
+
       - name: Export docker image as tar
         run: docker save -o ${{ github.ref_name }}.tar ${{ steps.build.outputs.imageid }}
 
@@ -39,9 +53,12 @@ jobs:
           ignore-unfixed: true
           severity: 'CRITICAL,HIGH'
           github-pat: ${{ secrets.GITHUB_TOKEN }}
+          cache-dir: "./cache"
+
+      - name: Change permissions for trivy.db
+        run: sudo chmod 0644 ./cache/db/trivy.db
 
       - name: Upload scan results to GitHub Security
         uses: github/codeql-action/upload-sarif@v2
-        if: always()
         with:
           sarif_file: 'trivy-results.sarif'