diff --git a/.github/containerscan/allowedlist.yaml b/.github/containerscan/allowedlist.yaml
new file mode 100644
index 00000000..c60b627b
--- /dev/null
+++ b/.github/containerscan/allowedlist.yaml
@@ -0,0 +1,55 @@
+general:
+  vulnerabilities:
+    - CVE-2019-12402   
+    - CVE-2021-43527
+    - CVE-2021-3449
+    - CVE-2020-1971
+    - CVE-2021-3711
+    - CVE-2021-33910
+    - CVE-2021-33910
+    - CVE-2020-27170
+    - CVE-2020-28374
+    - CVE-2020-29661
+    - CVE-2021-22555
+    - CVE-2021-27365
+    - CVE-2021-29154
+    - CVE-2021-33909
+    - CVE-2021-3493
+    - CVE-2021-3600
+    - CVE-2021-3609
+    - CVE-2021-3653
+    - CVE-2021-3656
+    - CVE-2021-4002
+    - CVE-2020-1971
+    - CVE-2021-3449
+    - CVE-2021-3711
+    - CVE-2021-33430
+    - CVE-2020-27171
+    - CVE-2022-0492
+    - CVE-2021-29425
+    - CVE-2021-45046
+    - CVE-2021-44832
+    - CVE-2021-45105
+    - CVE-2021-42550
+    - CVE-2021-37136
+    - CVE-2021-37137
+    - CVE-2021-21290
+    - CVE-2021-43797
+    - CVE-2021-21295
+    - CVE-2021-21409
+    - CVE-2022-21724
+    - CVE-2021-22060
+    - CVE-2021-35515
+    - CVE-2021-35516
+    - CVE-2021-35517
+    - CVE-2021-36090  
+    
+  bestPracticeViolations:
+    - CIS-DI-0007
+    - DKL-DI-0005
+    - CIS-DI-0001
+    - DKL-DI-0006
+    - CIS-DI-0005
+    - CIS-DI-0006
+    - CIS-DI-0008
+    - DKL-LI-0003
\ No newline at end of file
diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
index 269afd74..130880a9 100644
--- a/.github/workflows/docker.yml
+++ b/.github/workflows/docker.yml
@@ -62,6 +62,10 @@ jobs:
           cache-from: type=local,src=/tmp/.buildx-cache
           cache-to: type=local,dest=/tmp/.buildx-cache-new
 
+      - uses: azure/container-scan@v0
+        with:
+          image-name: ${{ env.REGISTRY }}/moja-global/flint_reporting.client:master
+
       # This ugly bit is necessary if you don't want your cache to grow forever
       # till it hits GitHub's limit of 5GB.
       # Temp fix
@@ -79,6 +83,7 @@ jobs:
       contents: read
       packages: write
     strategy:
+      fail-fast: false
       matrix:
         services:
           - accountabilities
@@ -161,6 +166,10 @@ jobs:
           cache-from: type=local,src=/tmp/.buildx-cache
           cache-to: type=local,dest=/tmp/.buildx-cache-new
 
+      - uses: azure/container-scan@v0
+        with:
+          image-name: ${{ env.REGISTRY }}/moja-global/flint_reporting.${{ matrix.services }}:master
+
       - name: Move cache
         run: |
           rm -rf /tmp/.buildx-cache