diff --git a/.github/workflows/node.yaml b/.github/workflows/node.yaml
index 268c7d71dc..b4b86c3b94 100644
--- a/.github/workflows/node.yaml
+++ b/.github/workflows/node.yaml
@@ -232,6 +232,8 @@ jobs:
       - name: Trivy scanning
         if: steps.check-build-and-push.outputs.enable == 'true' && steps.check-ghcr.outputs.enable == 'true' && steps.ghcr-tag.outputs.tags != 0
         uses: aquasecurity/trivy-action@0.24.0
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         with:
           image-ref: "${{ steps.trivy-image.outputs.image }}"
           format: "table"