diff --git a/.github/workflows/template-trivy-scan.yml b/.github/workflows/template-trivy-scan.yml
index b7af3610333..85f61c8cc86 100644
--- a/.github/workflows/template-trivy-scan.yml
+++ b/.github/workflows/template-trivy-scan.yml
@@ -48,6 +48,7 @@ jobs:
           output: ${{ inputs.output }}
           exit-code: ${{ inputs.exit-code }}
           severity: ${{ inputs.severity }}
+          trivy-config: trivy.yml
 
       - name: Upload Trivy scan results to GitHub Security tab
         uses: github/codeql-action/upload-sarif@v2
diff --git a/trivy.yml b/trivy.yml
new file mode 100644
index 00000000000..e69de29bb2d