diff --git a/.github/workflows/compass-manager.yaml b/.github/workflows/compass-manager.yaml
index 68df57a..b8d0325 100644
--- a/.github/workflows/compass-manager.yaml
+++ b/.github/workflows/compass-manager.yaml
@@ -84,6 +84,12 @@ jobs:
       - name: Checkout code
         uses: actions/checkout@v3
 
+      - name: Install trivy
+        run: |
+          mkdir ./trivy
+          curl -L https://github.com/aquasecurity/trivy/releases/download/v0.49.1/trivy_0.49.1_Linux-64bit.tar.gz | tar xvz --directory=./trivy
+          ./trivy/trivy --version
+
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/trivy-action@0.24.0
         with:
@@ -99,12 +105,6 @@ jobs:
           format: json
           output: 'trivy-results.json'
 
-      - name: Install trivy
-        run: |
-          mkdir ./trivy
-          curl -L https://github.com/aquasecurity/trivy/releases/download/v0.49.1/trivy_0.49.1_Linux-64bit.tar.gz | tar xvz --directory=./trivy
-          ./trivy/trivy --version
-
       - name: Convert results
         if: success() || failure()
         run: |