diff --git a/.github/workflows/osv-scanner-unified-action.yml b/.github/workflows/osv-scanner-unified-action.yml
index e9489442eee..d876a1935c5 100644
--- a/.github/workflows/osv-scanner-unified-action.yml
+++ b/.github/workflows/osv-scanner-unified-action.yml
@@ -33,7 +33,7 @@ permissions:
 jobs:
   scan-scheduled:
     if: ${{ github.event_name == 'push' || github.event_name == 'schedule' }}
-    uses: "./.github/workflows/osv-scanner-reusable.yml"
+    uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@staging"
     with:
       # Just scan the root directory and docs, since everything else is fixtures
       scan-args: |-
@@ -42,7 +42,7 @@ jobs:
         ./docs/
   scan-pr:
     if: ${{ github.event_name == 'pull_request' || github.event_name == 'merge_group' }}
-    uses: "./.github/workflows/osv-scanner-reusable-pr.yml"
+    uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@staging"
     with:
       # Just scan the root directory and docs, since everything else is fixtures
       scan-args: |-