Your team utilizes Docker images for application development. There's a critical need to identify and mitigate exploits in Docker images created via Cloud Build prior to their deployment. You're assigned to implement a process for detecting vulnerabilities in these images before they go live. Which two actions should you take to fulfill this requirement?