diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml
index 99803f075..537e93566 100644
--- a/.github/workflows/audit.yml
+++ b/.github/workflows/audit.yml
@@ -21,15 +21,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
-        
-      # See https://github.com/rustsec/audit-check for docs
-      # TODO: re-enable if https://github.com/rustsec/audit-check/pull/20 is merged
-      # - uses: rustsec/audit-check@v1
-      #   with:
-      #     token: ${{ secrets.GITHUB_TOKEN }}
 
-      # Currently the rustsec/audit-check action regenerates the Cargo.lock
-      # file. Our binaries are built using the committed lock file.
-      # Re-generating the lock file can hide vulnerabilities. We therefore run
-      # cargo audit directly which respects our lock file.
-      - run: cargo audit
+      - uses: rustsec/audit-check@v2
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}