trivy-db repository

[andrewmackett]

Jira: PE-860

Trivy scans the source code and any container image for vulnerabilities. However, when using the default repository for the trivy database, we see rate limiting issues:

Fatal error	init error: DB error: failed to download vulnerability DB: database download error: OCI repository error: 1 error occurred:
	* GET https://ghcr.io/v2/aquasecurity/trivy-db/manifests/2: TOOMANYREQUESTS: retry-after: 669.3µs, allowed: 44000/minute

This has been widely reported on the Trivy git repositories and the Trivy maintainers are making changes in an attempt to improve the situation. However it's unclear how long these changes will take and it appears the changes will only be available in the latest versions. We often pin to an older version of trivy because of another issue (of our own making).

We've have setup a Google Artifact Registry "remote repository" which effectively caches images from the default GitHub Container Registry. This PR updates the settings trivy uses to get the database from this cache, and avoiding the rate limiting from ghcr.

_{This PR was generated using turbolift.}

[gr4vy-code]

🚀 PR was released in v1.6.1 🚀