diff --git a/.gitea/workflows/scan.yaml b/.gitea/workflows/scan.yaml
index d5593e2..d61fb78 100644
--- a/.gitea/workflows/scan.yaml
+++ b/.gitea/workflows/scan.yaml
@@ -12,7 +12,9 @@ jobs:
       uses: actions/checkout@v4
       with:
         fetch-depth: 0
+    - name: Install TruffleHog
+      run: |
+        curl -sSfL https://raw.githubusercontent.com/trufflesecurity/trufflehog/main/scripts/install.sh \
+          | sh -s -- -b /usr/local/bin
     - name: Secret Scanning
-      uses: trufflesecurity/trufflehog@main
-      with:
-        extra_args: --results=verified,unknown
\ No newline at end of file
+      run: trufflehog git file://. --fail --no-update --results=verified,unknown
\ No newline at end of file