diff --git a/.github/workflows/kics.yml b/.github/workflows/kics.yml
index 1af7733193..23043f4086 100644
--- a/.github/workflows/kics.yml
+++ b/.github/workflows/kics.yml
@@ -31,6 +31,7 @@ jobs:
           path: "."
           # Exclude paths or files from scan
           # exclude_paths: "api/irs-v1.0.yaml"
+          exclude_paths: "api-tests/irs-api-tests.tavern.yaml"
           # Fail on HIGH severity results
           fail_on: high
           # when provided with a directory on output_path
diff --git a/.github/workflows/tavern.yml b/.github/workflows/tavern.yml
index d57ec8292d..838b8dc81e 100644
--- a/.github/workflows/tavern.yml
+++ b/.github/workflows/tavern.yml
@@ -27,14 +27,14 @@ jobs:
 
       - name: Install dependencies
         run: |
-          py -m pip install pytest
-          py -m pip install tavern
+          pip install pytest
+          pip install tavern
 
       - name: Run tests
         env:
           IRS_HOST: ${{ github.event.inputs.irs-host || 'https://irs.int.demo.catena-x.net' }}
-          KEYCLOAK_HOST: https://centralidp.demo.catena-x.net/auth/realms/CX-Central/protocol/openid-connect/token
+          KEYCLOAK_HOST: ${{ secrets.KEYCLOAK_OAUTH2_CLIENT_TOKEN_URI }}
           KEYCLOAK_CLIENT_ID: ${{ secrets.KEYCLOAK_OAUTH2_CLIENT_ID }}
           KEYCLOAK_CLIENT_SECRET: ${{ secrets.KEYCLOAK_OAUTH2_CLIENT_SECRET }}
         run: |
-          py -m pytest api-tests/irs-api-tests.tavern.yaml
+          python -m pytest api-tests/irs-api-tests.tavern.yaml