CVE check in IoT 2050

[SCordibella]

Dear @jan-kiszka I see a thread in which you are speaking about CVE check in cip-core / debian.

My guess is to perform a CVE check every new image build, and I know that it is possible to automate this process in some build system like Yocto.

Could you please give me a little bit more context about this activity for IoT-2050?

Best regards, Stefano.