Add lockfile version verification to trivy-fs step

.woodpecker.yml

@@ -81,6 +81,9 @@ steps:
     commands:
       - echo "nameserver 1.1.1.1" > /etc/resolv.conf
       - echo "nameserver 1.0.0.1" >> /etc/resolv.conf
+      - echo "=== Verifying package-lock.json versions ==="
+      - grep -A2 '"node_modules/glob"' package-lock.json | head -5
+      - grep -A2 '"node_modules/mime"' package-lock.json | head -5
       - trivy --version | cat
       - trivy fs --scanners vuln,misconfig --severity HIGH,CRITICAL --exit-code 0 .
       - trivy fs --scanners vuln,misconfig --severity HIGH,CRITICAL --exit-code 0 Dockerfile