diff --git a/.github/workflows/trivy-docker.yaml b/.github/workflows/trivy-docker.yaml
index ae5c266659fd..827a9905ab2f 100644
--- a/.github/workflows/trivy-docker.yaml
+++ b/.github/workflows/trivy-docker.yaml
@@ -33,7 +33,7 @@ permissions:
   packages: none
   pull-requests: none
   repository-projects: none
-  security-events: none
+  security-events: write
   statuses: none
 
 # Cancel in-progress runs for pull requests when developers push