diff --git a/.drone.yml b/.drone.yml
index 7d697e7..619cd0a 100644
--- a/.drone.yml
+++ b/.drone.yml
@@ -8,7 +8,7 @@ clone:
 
 steps:
   - name: build-test-publish
-    image: mcr.microsoft.com/dotnet/sdk:10.0
+    image: nexus.khongisa.co.za/mcr.microsoft.com/dotnet/sdk:10.0
     commands:
       - dotnet restore --source https://nexus.khongisa.co.za/repository/nuget-group/index.json --no-cache
       - dotnet build --configuration Release --no-restore
@@ -31,17 +31,6 @@ steps:
       dry_run: true 
       # Set to false once you verify the scan passes, or see the step below
 
-  - name: vulnerability-scan
-    image: aquasec/trivy:0.50.1
-    environment:
-      # Trivy needs these to pull the image from your Nexus to scan it
-      TRIVY_USERNAME:
-        from_secret: docker_username
-      TRIVY_PASSWORD:
-        from_secret: docker_password
-    commands:
-      - trivy image --exit-code 1 --severity CRITICAL nexus.khongisa.co.za/webapitest:${DRONE_BUILD_NUMBER}
-
   - name: docker-push
     image: plugins/docker
     settings:
@@ -53,6 +42,17 @@ steps:
       password:
         from_secret: docker_password
 
+  - name: vulnerability-scan
+    image: nexus.khongisa.co.za/aquasec/trivy:0.50.1
+    environment:
+      # Trivy needs these to pull the image from your Nexus to scan it
+      TRIVY_USERNAME:
+        from_secret: docker_username
+      TRIVY_PASSWORD:
+        from_secret: docker_password
+    commands:
+      - trivy image --exit-code 1 --severity CRITICAL nexus.khongisa.co.za/webapitest:${DRONE_BUILD_NUMBER}
+
   # --- DEPLOY STAGE ---
   - name: deploy-uat
     image: appleboy/drone-ssh