diff --git a/.github/workflows/trivy-scan.yml b/.github/workflows/trivy-scan.yml
index a8dc73d..41e9d31 100644
--- a/.github/workflows/trivy-scan.yml
+++ b/.github/workflows/trivy-scan.yml
@@ -91,6 +91,8 @@ jobs:
           severity: 'HIGH,CRITICAL'
           output: 'trivy-results.sarif'
           exit-code: 1
+          ignore-unfixed: true
+          cache-dir: .trivy
 
       - name: Upload Trivy scan results to GitHub Security tab
         if: always()