diff --git a/CHANGELOG.md b/CHANGELOG.md
index 72e4c08dbc0c9928e1bdedc11f0073a58a82b483..57bc439b4c7941762da6b5d9f4ac5a19d111a59a 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,3 +1,10 @@
+## [5.14.1](https://gitlab.com/to-be-continuous/docker/compare/5.14.0...5.14.1) (2024-11-02)
+
+
+### Bug Fixes
+
+* limit security reports access to developer role or higher ([29a3173](https://gitlab.com/to-be-continuous/docker/commit/29a3173e7393ad84df324a34cd8cdc17ab3cac14))
+
 # [5.14.0](https://gitlab.com/to-be-continuous/docker/compare/5.13.3...5.14.0) (2024-11-01)
 
 
diff --git a/README.md b/README.md
index 73ce4cbd09afa6c835895e4568269817db0920ea..e5570a5d175b03bbc4c091e87229e3a7410b6a59 100644
--- a/README.md
+++ b/README.md
@@ -14,7 +14,7 @@ Add the following to your `.gitlab-ci.yml`:
 ```yaml
 include:
   # 1: include the component
-  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.0
+  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.1
     # 2: set/override component inputs
     inputs:
       build-tool: buildah # ⚠ this is only an example
@@ -28,7 +28,7 @@ Add the following to your `.gitlab-ci.yml`:
 include:
   # 1: include the template
   - project: 'to-be-continuous/docker'
-    ref: '5.14.0'
+    ref: '5.14.1'
     file: '/templates/gitlab-ci-docker.yml'
 
 variables:
@@ -558,7 +558,7 @@ Here is a `.gitlab-ci.yaml` using an external Docker registry:
 
 ```yaml
 include:
-  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.0
+  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.1
     inputs:
       snapshot-image: "registry.acme.host/$CI_PROJECT_NAME/snapshot:$CI_COMMIT_REF_SLUG"
       release-image: "registry.acme.host/$CI_PROJECT_NAME:$CI_COMMIT_REF_NAME"
@@ -573,7 +573,7 @@ Here is a `.gitlab-ci.yaml` that builds 2 Docker images from the same project (u
 
 ```yaml
 include:
-  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.0
+  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.1
 
 .docker-base:
   parallel:
@@ -626,7 +626,7 @@ With:
 ```yaml
 include:
   # main template
-  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.0
+  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.1
   # Vault variant
   - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker-vault@5.7.0
     inputs:
@@ -675,7 +675,7 @@ to use the snapshot image repository (will host your snapshot image as well as c
 
 ```yaml
 include:
-  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.0
+  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.1
     inputs:
       build-tool: "kaniko" # Only Kaniko has been proved to work for this use case YET
       # untested & unverified container image
@@ -748,7 +748,7 @@ then set the required configuration.
 
 ```yaml
 include:
-  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.0
+  - component: $CI_SERVER_FQDN/to-be-continuous/docker/gitlab-ci-docker@5.14.1
     inputs:
       # untested & unverified container image
       snapshot-image: "123456789012.dkr.ecr.us-east-1.amazonaws.com/$CI_PROJECT_PATH_SLUG/snapshot:$CI_COMMIT_REF_SLUG"
diff --git a/templates/gitlab-ci-docker-ecr.yml b/templates/gitlab-ci-docker-ecr.yml
index ad9d2975a29192a4692544c98d93f9bdbe2c3c23..b2d5a8916185b5ea957d0caa96ed4eb382d1f943 100644
--- a/templates/gitlab-ci-docker-ecr.yml
+++ b/templates/gitlab-ci-docker-ecr.yml
@@ -45,7 +45,7 @@ variables:
 .docker-base:
   services:
     - name: "$TBC_TRACKING_IMAGE"
-      command: ["--service", "docker", "5.14.0"]
+      command: ["--service", "docker", "5.14.1"]
     - name: "$TBC_AWS_PROVIDER_IMAGE"
       alias: "aws-auth-provider"
   id_tokens:
diff --git a/templates/gitlab-ci-docker-gcp.yml b/templates/gitlab-ci-docker-gcp.yml
index 8a2be585571d25f5738ee4f7519212b806f5455f..1e6fc1251e41a8ce4b04ea0dce91b5d6572820bc 100644
--- a/templates/gitlab-ci-docker-gcp.yml
+++ b/templates/gitlab-ci-docker-gcp.yml
@@ -44,7 +44,7 @@ variables:
 .docker-base:
   services:
     - name: "$TBC_TRACKING_IMAGE"
-      command: ["--service", "docker", "5.14.0"]
+      command: ["--service", "docker", "5.14.1"]
     - name: "$TBC_GCP_PROVIDER_IMAGE"
       alias: "gcp-auth-provider"
   variables:
diff --git a/templates/gitlab-ci-docker-vault.yml b/templates/gitlab-ci-docker-vault.yml
index 99db0cf1ac92cf2e2600822706073cf69ef391cd..45129fbfe6b6857888e6c61b04bedad72404fa56 100644
--- a/templates/gitlab-ci-docker-vault.yml
+++ b/templates/gitlab-ci-docker-vault.yml
@@ -22,7 +22,7 @@ variables:
 .docker-base:
   services:
     - name: "$TBC_TRACKING_IMAGE"
-      command: ["--service", "docker", "5.14.0"]
+      command: ["--service", "docker", "5.14.1"]
     - name: "$TBC_VAULT_IMAGE"
       alias: "vault-secrets-provider"
   variables:
diff --git a/templates/gitlab-ci-docker.yml b/templates/gitlab-ci-docker.yml
index c1a02770ed1c727da1b7f2d6780b1d30424ab0d3..bf6d22339c8fe6ccdb3b959d4579cf405226ea5b 100644
--- a/templates/gitlab-ci-docker.yml
+++ b/templates/gitlab-ci-docker.yml
@@ -701,7 +701,7 @@ stages:
 .docker-base:
   services:
     - name: "$TBC_TRACKING_IMAGE"
-      command: ["--service", "docker", "5.14.0"]
+      command: ["--service", "docker", "5.14.1"]
   before_script:
     - !reference [.docker-scripts]
 
@@ -737,7 +737,7 @@ stages:
     _TRACE: "${TRACE}"
   services:
     - name: "$TBC_TRACKING_IMAGE"
-      command: ["--service", "docker", "5.14.0"]
+      command: ["--service", "docker", "5.14.1"]
     - name: $DOCKER_DIND_IMAGE
       alias: docker
       command: