diff --git a/.github/workflows/diff-dependencies.yml b/.github/workflows/diff-dependencies.yml
index 852a31e..ee6611a 100644
--- a/.github/workflows/diff-dependencies.yml
+++ b/.github/workflows/diff-dependencies.yml
@@ -1,11 +1,15 @@
 name: Dependency Diff
 
 on:
-  pull_request:
+  pull_request_target:
+    branches:
+      - main
 
 jobs:
   build-main:
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
     steps:
       - name: Checkout
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
@@ -27,9 +31,13 @@ jobs:
           path: '*.tgz'
   build-pr:
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
     steps:
       - name: Checkout
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          ref: ${{ github.event.pull_request.head.sha }}
       - name: Use Node
         uses: actions/setup-node@6044e13b5dc448c55e2357c09f80417699197238 # v6.2.0
         with:
@@ -54,6 +62,7 @@ jobs:
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           fetch-depth: 0
+          ref: ${{ github.event.pull_request.head.sha }}
       - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
         with:
           name: base-packages
@@ -63,7 +72,7 @@ jobs:
           name: source-packages
           path: ./source-packages
       - name: Create Diff
-        uses: ./
+        uses: e18e/action-dependency-diff@main
         with:
           base-packages: ./base-packages/*.tgz
           source-packages: ./source-packages/*.tgz