diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 5cd27f2..dcc20a7 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -56,6 +56,12 @@ jobs:
         exit-level: 'warn'
         ignore: 'CIS-DI-0001'
 
+    - name: Container scan with hadolint
+      uses: hadolint/hadolint-action@v3.1.0
+      with:
+        failure-threshold: error
+        ignore: DL3008,DL3018
+
     - name: Container scan with Trivy
       uses: aquasecurity/trivy-action@0.9.2
       with: