diff --git a/.github/workflows/blackduck.yaml b/.github/workflows/blackduck.yaml
index eb4d5675c..a0893d130 100644
--- a/.github/workflows/blackduck.yaml
+++ b/.github/workflows/blackduck.yaml
@@ -24,6 +24,8 @@ jobs:
   security:
     if: github.repository == 'nutanix-cloud-native/cluster-api-runtime-extensions-nutanix'
     runs-on: ubuntu-22.04
+    permissions:
+      pull-requests: write
     steps:
       - name: Checkout
         uses: actions/checkout@v4
@@ -59,7 +61,7 @@ jobs:
 
       - name: Black Duck Full Scan
         if: ${{ github.event_name != 'pull_request' }}
-        uses: blackduck-inc/black-duck-security-scan@v2.0.0
+        uses: blackduck-inc/black-duck-security-scan@v2.1.0
         with:
           blackducksca_url: ${{ secrets.BLACKDUCK_URL }}
           blackducksca_token: ${{ secrets.BLACKDUCK_API_TOKEN }}
@@ -69,7 +71,7 @@ jobs:
 
       - name: Black Duck PR Scan
         if: ${{ github.event_name == 'pull_request' }}
-        uses: blackduck-inc/black-duck-security-scan@v2.0.0
+        uses: blackduck-inc/black-duck-security-scan@v2.1.0
         env:
           DETECT_PROJECT_VERSION_NAME: ${{ github.base_ref }}
         with: