fix: use scan only

.github/workflows/build-and-push.yml

@@ -26,17 +26,12 @@ jobs:
         uses: aquasecurity/trivy-action@master
         with:
           image-ref: 'ghcr.io/${{ github.repository_owner }}/translate-bot:latest'
-          format: 'sarif'
-          exit-code: '1'
+          scan-type: 'image'
+          format: 'table'
+          exit-code: '0' # 0 is passes, 1 is failed when scanning result is true.
           ignore-unfixed: true
           vuln-type: 'os,library'
           severity: 'CRITICAL,HIGH'
-          output: 'trivy-results.sarif'
-
-      - name: Upload Truvy scan results
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          sarif_file: 'trivy-results.sarif'
 
       - name: Push image to ghcr
         run: |