diff --git a/.github/workflows/lint-yaml.yml b/.github/workflows/lint-yaml.yml
index eb9ff72..b74b1bc 100644
--- a/.github/workflows/lint-yaml.yml
+++ b/.github/workflows/lint-yaml.yml
@@ -19,6 +19,8 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          persist-credentials: false
 
       - name: GitHub action templates lint
         uses: ibiqlik/action-yamllint@2576378a8e339169678f9939646ee3ee325e845c # v3.1.1
@@ -26,3 +28,9 @@ jobs:
           file_or_dir: workflow-templates
           config_data: |
             line-length: warning
+
+      - name: Install the latest version of uv
+        uses: astral-sh/setup-uv@38f3f104447c67c051c4a08e39b64a148898af3a # v4.2.0
+
+      - name: Run zizmor
+        run: uvx zizmor --min-severity medium