diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 70d96cc0c..bcf85b902 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -21,7 +21,7 @@ permissions:
 jobs:
   analyze:
     name: Analyze
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=small-arm
     if: github.repository == 'anchore/syft' # only run for main repo
     permissions:
diff --git a/.github/workflows/detect-schema-changes.yaml b/.github/workflows/detect-schema-changes.yaml
index 0373a2c7c..6257658a5 100644
--- a/.github/workflows/detect-schema-changes.yaml
+++ b/.github/workflows/detect-schema-changes.yaml
@@ -27,7 +27,7 @@ env:
 jobs:
   label:
     name: "Label changes"
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=small-arm
     permissions:
       contents: read
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index 6246cc54f..0bf1d9ffd 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -13,7 +13,7 @@ on:
 jobs:
   quality-gate:
     environment: release
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=tiny
     steps:
       - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 #v5.0.0
@@ -120,7 +120,7 @@ jobs:
 
   release:
     needs: [quality-gate]
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=release
     permissions:
       contents: write
diff --git a/.github/workflows/test-fixture-cache-publish.yaml b/.github/workflows/test-fixture-cache-publish.yaml
index e76fe6963..1f7a0d28c 100644
--- a/.github/workflows/test-fixture-cache-publish.yaml
+++ b/.github/workflows/test-fixture-cache-publish.yaml
@@ -14,7 +14,7 @@ jobs:
   Publish:
     name: "Publish test fixture image cache"
     # we use this runner to get enough storage space for docker images and fixture cache
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=build/disk=large
     if: github.repository == 'anchore/syft' # only run for main repo
     permissions:
diff --git a/.github/workflows/update-anchore-dependencies.yml b/.github/workflows/update-anchore-dependencies.yml
index e0472da4f..d0cc843eb 100644
--- a/.github/workflows/update-anchore-dependencies.yml
+++ b/.github/workflows/update-anchore-dependencies.yml
@@ -12,7 +12,7 @@ permissions:
 
 jobs:
   update:
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=small-arm
     if: github.repository_owner == 'anchore' # only run for main repo (not forks)
     steps:
diff --git a/.github/workflows/update-bootstrap-tools.yml b/.github/workflows/update-bootstrap-tools.yml
index 22360e028..009573c36 100644
--- a/.github/workflows/update-bootstrap-tools.yml
+++ b/.github/workflows/update-bootstrap-tools.yml
@@ -10,7 +10,7 @@ permissions:
 
 jobs:
   update-bootstrap-tools:
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=small
     if: github.repository == 'anchore/syft' # only run for main repo
     steps:
diff --git a/.github/workflows/update-cpe-dictionary-index.yml b/.github/workflows/update-cpe-dictionary-index.yml
index ae2f7f4ff..a952e8b2d 100644
--- a/.github/workflows/update-cpe-dictionary-index.yml
+++ b/.github/workflows/update-cpe-dictionary-index.yml
@@ -13,7 +13,7 @@ env:
 
 jobs:
   upgrade-cpe-dictionary-index:
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=small-arm
     permissions:
       contents: read
diff --git a/.github/workflows/update-spdx-license-list.yaml b/.github/workflows/update-spdx-license-list.yaml
index 91b97dc82..58e2ce39a 100644
--- a/.github/workflows/update-spdx-license-list.yaml
+++ b/.github/workflows/update-spdx-license-list.yaml
@@ -13,7 +13,7 @@ env:
 
 jobs:
   upgrade-spdx-license-list:
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=small-arm
     if: github.repository == 'anchore/syft' # only run for main repo
     steps:
diff --git a/.github/workflows/validate-github-actions.yaml b/.github/workflows/validate-github-actions.yaml
index fa2286cd1..814b13860 100644
--- a/.github/workflows/validate-github-actions.yaml
+++ b/.github/workflows/validate-github-actions.yaml
@@ -19,7 +19,7 @@ permissions:
 jobs:
   zizmor:
     name: "Lint"
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=small-arm
     permissions:
       contents: read
diff --git a/.github/workflows/validations.yaml b/.github/workflows/validations.yaml
index ec9efda81..7b38e000a 100644
--- a/.github/workflows/validations.yaml
+++ b/.github/workflows/validations.yaml
@@ -14,7 +14,7 @@ jobs:
   Static-Analysis:
     # Note: changing this job name requires making the same update in the .github/workflows/release.yaml pipeline
     name: "Static analysis"
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=small
     steps:
       - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 #v5.0.0
@@ -31,7 +31,7 @@ jobs:
     # Note: changing this job name requires making the same update in the .github/workflows/release.yaml pipeline
     name: "Unit tests"
     # we need more storage than what's on the default runner
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=medium
     steps:
       - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 #v5.0.0
@@ -49,7 +49,7 @@ jobs:
   Integration-Test:
     # Note: changing this job name requires making the same update in the .github/workflows/release.yaml pipeline
     name: "Integration tests"
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=medium
     steps:
       - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 #v5.0.0
@@ -69,7 +69,7 @@ jobs:
 
   Build-Snapshot-Artifacts:
     name: "Build snapshot artifacts"
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=build
     steps:
       # required for magic-cache from runs-on to function with artifact upload/download (see https://runs-on.com/caching/magic-cache/#actionsupload-artifact-compatibility)
@@ -101,7 +101,7 @@ jobs:
     # Note: changing this job name requires making the same update in the .github/workflows/release.yaml pipeline
     name: "Acceptance tests (Linux)"
     needs: [Build-Snapshot-Artifacts]
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=medium
     steps:
       # required for magic-cache from runs-on to function with artifact upload/download (see https://runs-on.com/caching/magic-cache/#actionsupload-artifact-compatibility)
@@ -179,7 +179,7 @@ jobs:
     # Note: changing this job name requires making the same update in the .github/workflows/release.yaml pipeline
     name: "CLI tests (Linux)"
     needs: [Build-Snapshot-Artifacts]
-    # Runner definition: workflows/.github/runs-on.yml
+    # Runner definition: repo(anchore/workflows)/.github/runs-on.yml
     runs-on: runs-on=${{ github.run_id }}/runner=medium
     steps:
       # required for magic-cache from runs-on to function with artifact upload/download (see https://runs-on.com/caching/magic-cache/#actionsupload-artifact-compatibility)