diff --git a/.github/workflows/pr-review.yml b/.github/workflows/pr-review.yml
index 3d64eb0d..b7e8e297 100644
--- a/.github/workflows/pr-review.yml
+++ b/.github/workflows/pr-review.yml
@@ -8,19 +8,15 @@ on:
     types: [ready_for_review, opened]
 
 permissions:
-  contents: read # Required at top level so `GITHUB_TOKEN` for `issue_comment` events can read repository contents.
+  contents: read # Required at top-level so `issue_comment` events can read repository contents.
 
 jobs:
   review:
-    uses: docker/cagent-action/.github/workflows/review-pr.yml@b4ccf4cc94f5b34d1760709012c40975f6def2d1 # v1.3.2
+    uses: docker/cagent-action/.github/workflows/review-pr.yml@d98096f432f2aea5091c811852c4da804e60623a # v1.4.1
     # Scoped to the job so other jobs in this workflow aren't over-permissioned
     permissions:
-      contents: read # Required for issue_comment events to read repository files and PR diffs
+      contents: read # Read repository files and PR diffs
       pull-requests: write # Post review comments and approve/request changes
       issues: write # Create security incident issues if secrets are detected in output
       checks: write # (Optional) Show review progress as a check run on the PR
-    secrets:
-      ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
-      CAGENT_ORG_MEMBERSHIP_TOKEN: ${{ secrets.CAGENT_ORG_MEMBERSHIP_TOKEN }} # PAT with read:org scope; gates auto-reviews to org members only
-      CAGENT_REVIEWER_APP_ID: ${{ secrets.CAGENT_REVIEWER_APP_ID }} # GitHub App ID; reviews appear as your app instead of github-actions[bot]
-      CAGENT_REVIEWER_APP_PRIVATE_KEY: ${{ secrets.CAGENT_REVIEWER_APP_PRIVATE_KEY }} # GitHub App private key; paired with App ID above
+      id-token: write # Required for OIDC authentication to AWS Secrets Manager