diff --git a/.github/workflows/reuse.yml b/.github/workflows/reuse.yml
index 5c7f893..b682855 100644
--- a/.github/workflows/reuse.yml
+++ b/.github/workflows/reuse.yml
@@ -16,8 +16,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          persist-credentials: false
 
       - name: REUSE Compliance Check
-        uses: fsfe/reuse-action@3ae3c6bdf1257ab19397fab11fd3312144692083 # v4.0.0
-
+        uses: fsfe/reuse-action@bb774aa972c2a89ff34781233d275075cbddf542 # v5.0.0
diff --git a/README.md b/README.md
index dfab808..61fbabe 100644
--- a/README.md
+++ b/README.md
@@ -2,9 +2,10 @@
  - SPDX-FileCopyrightText: 2023 Nextcloud GmbH and Nextcloud contributors
  - SPDX-License-Identifier: AGPL-3.0-or-later
 -->
-
 # Nextcloud AppAPI Docker Socket Proxy
 
+[![REUSE status](https://api.reuse.software/badge/github.com/nextcloud/docker-socket-proxy)](https://api.reuse.software/info/github.com/nextcloud/docker-socket-proxy)
+
 This is a **Security-Enhanced** proxy for the Docker Socket *specifically* for AppAPI.
 
 It comes with built-in authentication and strict bruteforce protection.