diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml
index d6dcf158..51947ddf 100644
--- a/.github/workflows/snyk.yml
+++ b/.github/workflows/snyk.yml
@@ -7,6 +7,11 @@ on:
     branches:
       - main
 
+permissions:
+  actions: read
+  contents: read
+  security-events: write
+  
 jobs:
   security:
     runs-on: ubuntu-latest
@@ -19,7 +24,7 @@ jobs:
         env:
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
         with:
-          args: --sarif-file-output=snyk.sarif --all-projects --dev
+          args: --sarif-file-output=snyk.sarif --all-projects --dev --org=7b4599c0-e96e-435d-bfb9-081294c3aa4a --project-name=obsidian-confluence
 
       - name: Upload result to GitHub Code Scanning
         uses: github/codeql-action/upload-sarif@v2