diff --git a/.github/workflows/clean-up-unused-images.yaml b/.github/workflows/clean-up-unused-images.yaml
index 3b5018534b..929cd777f5 100644
--- a/.github/workflows/clean-up-unused-images.yaml
+++ b/.github/workflows/clean-up-unused-images.yaml
@@ -12,17 +12,26 @@ concurrency:
   group: clean-up-images-${{ github.ref }}
   cancel-in-progress: true
 
-env:
-  GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-
 jobs:
   find_unused_images:
     runs-on: ubuntu-latest
 
     steps:
+      - name: Retrieve Credentials
+        id: import-secrets
+        uses: hashicorp/vault-action@v3.0.0
+        with:
+          url: https://vault.prism.spectrocloud.com
+          method: approle
+          roleId: ${{ secrets.VAULT_ROLE_ID }}
+          secretId: ${{ secrets.VAULT_SECRET_ID }}
+          secrets: /providers/github/organizations/spectrocloud/token?org_name=spectrocloud token | VAULT_GITHUB_TOKEN
+
       - id: checkout
         name: Checkout Repository
         uses: actions/checkout@v4
+        with:
+          token: ${{ steps.import-secrets.outputs.VAULT_GITHUB_TOKEN }}
 
       - name: Setup Nodejs
         uses: actions/setup-node@v4
@@ -34,9 +43,6 @@ jobs:
       - name: Find unused images
         run: make find-unused-images
 
-      - name: Install GitHub CLI
-        run: sudo apt-get install gh
-
       - name: Create PR with unused images
         run: |
           # Ensure that we are on master.
@@ -71,5 +77,7 @@ jobs:
 
             EOF
           )"
+        env:
+          GH_TOKEN: ${{ steps.import-secrets.outputs.VAULT_GITHUB_TOKEN }}