diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml
index 4e3eab0..729c1db 100644
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@@ -61,7 +61,7 @@ jobs:
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/trivy-action@0.28.0
         with:
-          image-ref: 'ghcr.io/$IMAGE_NAME'
+          image-ref: 'ghcr.io/${{ env.IMAGE_NAME }}'
           format: 'table'
           exit-code: '1'
           ignore-unfixed: true