diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index a9711c0..ddf4845 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -21,6 +21,8 @@ jobs:
           allowed-endpoints: >
             docs.github.com:433
             api.github.com:443
+            pkg-containers.githubusercontent.com:443
+            ghcr.io:443
             api.hack23.com:443
             auth.docker.io:443
             cfu.zaproxy.org:443
@@ -166,6 +168,7 @@ jobs:
       - name: ZAP API Scan
         uses: zaproxy/action-api-scan@f34b07497d46a84e06d71ad4f304311634c24137 # v0.7.0
         with:
+          docker_name: "ghcr.io/zaproxy/zaproxy:stable"
           target: 'https://api.hack23.com/v1/healthcheck'
       - name: Bump version and push tag
         id: tag_version