diff --git a/.gitea/workflows/build.yml b/.gitea/workflows/build.yml
index 669f20b..d74367c 100644
--- a/.gitea/workflows/build.yml
+++ b/.gitea/workflows/build.yml
@@ -91,6 +91,7 @@ jobs:
           severity: UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL
           vuln-type: os,library
           cache: 'false'
+          token-setup-trivy: ${{ secrets.ACTIONS_TOKEN }}
 
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v3