diff --git a/.github/workflows/vulnerability-scan.yml b/.github/workflows/vulnerability-scan.yml
index 0e5464a9a..618598f02 100644
--- a/.github/workflows/vulnerability-scan.yml
+++ b/.github/workflows/vulnerability-scan.yml
@@ -21,8 +21,10 @@ jobs:
         run: docker build . --file Dockerfile --tag symfony-flex-backend:master
 
       - name: Scan image with Trivy
-        uses: lazy-actions/gitrivy@v3
+        uses: aquasecurity/trivy-action@0.28.0
         with:
-          token: ${{ secrets.GITHUB_TOKEN }}
-          image: symfony-flex-backend:master
-          ignore-unfixed: true
+          image-ref: symfony-flex-backend:master
+          ignore-unfixed: 'true'
+          exit-code: '1'
+          vuln-type: 'os,library'
+          severity: 'CRITICAL,HIGH'