See the fabric-gateway [vulnerability-scan.yml](https://github.com/hyperledger/fabric-gateway/blob/main/.github/workflows/vulnerability-scan.yml) workflow for example