diff --git a/.github/workflows/sec-scan.yml b/.github/workflows/sec-scan.yml
index 82f3bdb6a..f6a48f517 100644
--- a/.github/workflows/sec-scan.yml
+++ b/.github/workflows/sec-scan.yml
@@ -133,7 +133,7 @@ jobs:
         with:
           source_branch: ${{ env.SEC_SCAN_BRANCH }}
           destination_branch: ${{ env.BRANCH_NAME}}
-          github_token: ${{ secrets.GH_TOKEN }}
+          github_token: ${{ secrets.GITHUB_TOKEN }}
           pr_label: "automated pr"
           pr_title: "[Security Scanner Action] Weekly update of security vulnerabilities reported by Quay"
           pr_body: |
diff --git a/ci/security-scan/quay_security_analysis.py b/ci/security-scan/quay_security_analysis.py
index d0b62f026..b0d38422b 100644
--- a/ci/security-scan/quay_security_analysis.py
+++ b/ci/security-scan/quay_security_analysis.py
@@ -89,12 +89,8 @@ def process_image(image, commit_id_path, RELEASE_VERSION_N, HASH_N):
     sha_ = output.split(":")[1]
 
     url = f"https://quay.io/api/v1/repository/opendatahub/workbench-images/manifest/sha256:{sha_}/security"
-    headers = {
-        "X-Requested-With": "XMLHttpRequest",
-        "Authorization": "Bearer 3PZX0UYX6FSENKQ14I1VTHUJ4KGBS8L5LHJ0W1RN7TPHFVQ4P0NR7VQNCZIFRC9B_1"
-    }
 
-    response = requests.get(url, headers=headers)
+    response = requests.get(url)
     data = response.json()
 
     vulnerabilities = []