diff --git a/.github/SECURITY-INSIGHTS.yml b/.github/SECURITY-INSIGHTS.yml
index db0a112..4470893 100644
--- a/.github/SECURITY-INSIGHTS.yml
+++ b/.github/SECURITY-INSIGHTS.yml
@@ -1,9 +1,10 @@
-# Security Insights 2.0 file https://github.com/ossf/security-insights
-# Schema: https://github.com/ossf/security-insights/blob/main/spec/schema.cue
+# Security Insights 2.0 file https://github.com/ossf/security-insights 
+# Specification: https://github.com/ossf/security-insights/tree/main/spec
+
 header:
   schema-version: 2.0.0
-  last-updated: '2025-07-26'
-  last-reviewed: '2025-07-26'
+  last-updated: '2025-09-18'
+  last-reviewed: '2025-09-18'
   url: https://github.com/openfga/sample-stores
   project-si-source: https://raw.githubusercontent.com/openfga/.github/main/SECURITY-INSIGHTS.yml
   comment: Examples of OpenFGA models and store content.
@@ -16,15 +17,15 @@ repository:
   accepts-automated-change-request: true
   no-third-party-packages: true
   core-team:
-    - name: Andres Aguiar
-      affiliation: Okta
-      email: andres.aguiar@okta.com
-      social: https://github.com/aaguiarz
-      primary: true
-    - name: Raghd Hamzeh
-      affiliation: Okta
-      email: raghd.hamzeh@okta.com
-      social: https://github.com/rhamzeh
+  - name: Andres Aguiar
+    affiliation: Okta
+    email: andres.aguiar@okta.com
+    social: https://github.com/aaguiarz
+    primary: true
+  - name: Raghd Hamzeh
+    affiliation: Okta
+    email: raghd.hamzeh@okta.com
+    social: https://github.com/rhamzeh
 
   license:
     url: https://raw.githubusercontent.com/openfga/sample-stores/main/LICENSE
@@ -35,14 +36,14 @@ repository:
     dependency-management-policy: https://github.com/openfga/openfga/blob/main/docs/dependencies-policy.md
     governance: https://github.com/openfga/.github/blob/main/GOVERNANCE.md
     review-policy: https://github.com/openfga/.github/blob/main/CONTRIBUTING.md
-    security-policy: https://github.com/openfga/sample-stores/security.md
+    security-policy: https://github.com/openfga/sample-stores/SECURITY.md
 
   security:
     assessments:
       self:
         evidence: https://github.com/cncf/tag-security/blob/main/community/assessments/projects/openfga/joint-assessment.md
         date: '2024-12-19'
-        comment: OpenFGA has completed a CNCF security joint assessment with CNCF TAG Security and Compliance
+        comment: OpenFGA has completed a CNCF security joint assessment with CNCF TAG-Security
 
     tools:
       - name: Snyk
@@ -54,9 +55,9 @@ repository:
           adhoc: false
           ci: true
           release: true
-        comment: Snyk is enabled for this repo to scan for vulnerabilities.
+        comment: Snyk is enabled for this repository to scan for vulnerabilities.
       - name: Socket
-        type: other
+        type: SCA
         version: latest
         rulesets:
           - built-in