diff --git a/.drone.yml b/.drone.yml
index 0f53bdf..c45199a 100644
--- a/.drone.yml
+++ b/.drone.yml
@@ -10,7 +10,7 @@ steps:
   - name: build-test-publish
     image: mcr.microsoft.com/dotnet/sdk:10.0
     commands:
-      - dotnet restore
+      - dotnet restore --source https://nexus.khongisa.co.za/repository/nuget-public/ --no-cache
       - dotnet build --configuration Release --no-restore
       - dotnet test --configuration Release --no-build
       - dotnet publish --configuration Release --no-build
@@ -32,7 +32,7 @@ steps:
       # Set to false once you verify the scan passes, or see the step below
 
   - name: vulnerability-scan
-    image: aquasec/trivy
+    image: aquasec/trivy:0.50.1
     environment:
       # Trivy needs these to pull the image from your Nexus to scan it
       TRIVY_USERNAME: