diff --git a/.github/workflows/nightly-build.yml b/.github/workflows/nightly-build.yml
index 834fc693e..bb9730d8a 100644
--- a/.github/workflows/nightly-build.yml
+++ b/.github/workflows/nightly-build.yml
@@ -42,7 +42,7 @@ jobs:
 
       - name: build & publish
         run: |
-          docker scan --login --token "$SNYK_TOKEN" --accept-license
+          docker scan --severity=medium --login --token "$SNYK_TOKEN" --accept-license
           LATEST_TAG=nightly PKG_TAG=nightly make publish
         env: 
           SNYK_TOKEN: ${{ secrets.SNYK_AUTH_TOKEN }}
diff --git a/deployment/docker/Makefile b/deployment/docker/Makefile
index 5ad58705d..c4a288a4f 100644
--- a/deployment/docker/Makefile
+++ b/deployment/docker/Makefile
@@ -17,7 +17,7 @@ package-base:
 			deployment/docker/base
 
 docker-scan: package-base
-	docker scan --accept-license $(BASE_IMAGE) || (echo "❌ The build has been terminated because critical vulnerabilities were found in $(BASE_IMAGE)"; exit 1)
+	docker scan --severity=medium --accept-license $(BASE_IMAGE) || (echo "❌ The build has been terminated because critical vulnerabilities were found in $(BASE_IMAGE)"; exit 1)
 
 package-builder:
 	(docker image ls --format '{{.Repository}}:{{.Tag}}' | grep -q '$(BUILDER_IMAGE)$$') \