Fix ghcr authentication in grype scan workflow

.github/workflows/image-scan-anchore-grype.yml

@@ -20,26 +20,31 @@ on:
 
 permissions:
   contents: read
-  packages: read
 
 jobs:
   Anchore-Build-Scan:
     permissions:
       contents: read # for actions/checkout to fetch code
       security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
       actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
+      packages: read
     runs-on: ubuntu-latest
     steps:
     - name: Check out the code
       uses: actions/checkout@v4
-    - name: Log in to registry
-      run: echo "${{ secrets.GITHUB_TOKEN }}" | docker login ghcr.io -u ${{ github.actor }} --password-stdin
+    - name: Login to GitHub Container Registry
+      uses: docker/login-action@v3
+      with:
+        registry: ghcr.io
+        username: ${{ github.actor }}
+        password: ${{ secrets.GITHUB_TOKEN }}
+    - name: Pull image
+      run: docker pull "ghcr.io/lm-development/aks-sample/aks-sample:latest"
     - name: Run the Anchore Grype scan action
       uses: anchore/scan-action@d5aa5b6cb9414b0c7771438046ff5bcfa2854ed7
       id: scan
       with:
         image: "ghcr.io/lm-development/aks-sample/aks-sample:latest"
-        fail-build: false
     - name: Upload vulnerability report
       uses: github/codeql-action/upload-sarif@v3
       with: