diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
index c6dc8e3..20257bb 100644
--- a/.github/workflows/audit.yml
+++ b/.github/workflows/audit.yml
@@ -7,11 +7,14 @@ on:
     paths:
       - 'Cargo.toml'
       - 'Cargo.lock'
+      - '.cargo/audit.toml'
+      - '.github/workflows/audit.yml'
 
 jobs:
   security_audit:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
+      - run: cargo install cargo-audit --locked
       - name: Scan for vulnerabilities
         run: cargo audit