diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index bc31b2c..f6b8b38 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -92,7 +92,7 @@ jobs:
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/trivy-action@master
         with:
-          image-ref: 'ghcr.io/radiorabe/s2i-base@${{ steps.docker_build.outputs.digest }}'
+          image-ref: 'ghcr.io/radiorabe/s2i-base:${{ steps.meta.outputs.version }}'
           format: 'sarif'
           ignore-unfixed: true
           output: 'trivy-results.sarif'