diff --git a/.github/workflows/bandit.yaml b/.github/workflows/bandit.yaml
index 5802a8a..ed9dadf 100644
--- a/.github/workflows/bandit.yaml
+++ b/.github/workflows/bandit.yaml
@@ -11,8 +11,7 @@ permissions: {}
 jobs:
   bandit:
     permissions:
-      contents: read
-      pull-requests: write
+      security-events: write
     runs-on: ubuntu-latest
     strategy:
       fail-fast: false
@@ -20,20 +19,8 @@ jobs:
         python-version: ["3.12"]
 
     steps:
-      - name: Checkout repository
-        uses: actions/checkout@v5
-        with:
-          persist-credentials: false
-
-      - name: Set up Python ${{ matrix.python-version }}
-        uses: actions/setup-python@v6
-        with:
-          python-version: ${{ matrix.python-version }}
-
       - name: Run Bandit Scan
-        uses: lukehinds/bandit-action@new-action
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        uses: PyCQA/bandit-action@v1
         with:
-          path: "python"
-          recursive: "true"
+          python-version: ${{ matrix.python-version }}
+          targets: python