diff --git a/README.md b/README.md
index 2f498eee607253c43f3a951ec3a8f624f02f76c2..73ce4cbd09afa6c835895e4568269817db0920ea 100644
--- a/README.md
+++ b/README.md
@@ -296,7 +296,7 @@ FROM ubuntu
 RUN cd /tmp && echo "hello!"
 ```
 
-In addition to a textual report in the console, this job produces the following reports, kept for one day:
+In addition to a textual report in the console, this job produces the following reports, kept for one day and only available for download by users with the Developer role or higher:
 
 | Report                                       | Format                               | Usage                                                                                                                                                                          |
 | -------------------------------------------- | ------------------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ |
@@ -434,7 +434,7 @@ It is bound to the `package-test` stage, and uses the following variables:
 | `trivy-db-repository` / `DOCKER_TRIVY_DB_REPOSITORY`                       | OCI repository to retrieve Trivy Database from                                                                         | _none_ (use Trivy default `ghcr.io/aquasecurity/trivy-db`)          |
 | `trivy-java-db-repository` / `DOCKER_TRIVY_JAVA_DB_REPOSITORY`             | OCI repository to retrieve Trivy Java Database from                                                                    | _none_ (use Trivy default `ghcr.io/aquasecurity/trivy-java-db:1`)\_ |
 
-In addition to a textual report in the console, this job produces the following reports, kept for one day:
+In addition to a textual report in the console, this job produces the following reports, kept for one day and only available for download by users with the Developer role or higher:
 
 | Report                               | Format                                                                                                             | Usage                                                                                                                                                                       |
 | ------------------------------------ | ------------------------------------------------------------------------------------------------------------------ | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
diff --git a/templates/gitlab-ci-docker.yml b/templates/gitlab-ci-docker.yml
index 53604a501ebf283fd39da37268d64fb9b83f0158..c1a02770ed1c727da1b7f2d6780b1d30424ab0d3 100644
--- a/templates/gitlab-ci-docker.yml
+++ b/templates/gitlab-ci-docker.yml
@@ -786,6 +786,7 @@ docker-hadolint:
   artifacts:
     name: "$CI_JOB_NAME artifacts from $CI_PROJECT_NAME on $CI_COMMIT_REF_SLUG"
     expire_in: 1 day
+    access: developer
     when: always
     reports:
       codequality:
@@ -1018,6 +1019,7 @@ docker-trivy:
   artifacts:
     name: "$CI_JOB_NAME artifacts from $CI_PROJECT_NAME on $CI_COMMIT_REF_SLUG"
     expire_in: 1 day
+    access: developer
     when: always
     paths:
     - "reports/docker-trivy-*"