diff --git a/.github/workflows/automatic-api-update.yaml b/.github/workflows/automatic-api-update.yaml
index d9f5042..e73df24 100644
--- a/.github/workflows/automatic-api-update.yaml
+++ b/.github/workflows/automatic-api-update.yaml
@@ -23,7 +23,7 @@ jobs:
         run: |
           echo "Update status: $UPDATED_STATUS"
       - name: "Install buf"
-        uses: "bufbuild/buf-setup-action@v1.46.0"
+        uses: "bufbuild/buf-setup-action@v1.47.2"
         with:
           github_token: "${{ secrets.GITHUB_TOKEN }}"
         if: "steps.buf-update.outputs.updated == 'true'"
diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml
index 70865c7..1fcb062 100644
--- a/.github/workflows/lint.yaml
+++ b/.github/workflows/lint.yaml
@@ -1,6 +1,6 @@
 ---
 name: "Lint"
-on: # yamllint disable-line rule:truthy
+on:  # yamllint disable-line rule:truthy
   push:
     branches:
       - "main"
@@ -71,6 +71,9 @@ jobs:
           format: "sarif"
           output: "trivy-results.sarif"
           severity: "CRITICAL"
+        env:
+          TRIVY_DB_REPOSITORY: "public.ecr.aws/aquasecurity/trivy-db"
+          TRIVY_JAVA_DB_REPOSITORY: "public.ecr.aws/aquasecurity/trivy-java-db"
       - name: "Upload Trivy scan results to GitHub Security tab"
         uses: "github/codeql-action/upload-sarif@v3"
         with:
diff --git a/.github/workflows/manual-api-update.yaml b/.github/workflows/manual-api-update.yaml
index 39894bc..45baddb 100644
--- a/.github/workflows/manual-api-update.yaml
+++ b/.github/workflows/manual-api-update.yaml
@@ -27,7 +27,7 @@ jobs:
         run: |
           echo "Update status: $UPDATED_STATUS"
       - name: "Install buf"
-        uses: "bufbuild/buf-setup-action@v1.46.0"
+        uses: "bufbuild/buf-setup-action@v1.47.2"
         with:
           github_token: "${{ secrets.GITHUB_TOKEN }}"
         if: "steps.buf-update.outputs.updated == 'true'"