diff --git a/analyze/action.yml b/analyze/action.yml
index 6be05a4f3..477954ca9 100644
--- a/analyze/action.yml
+++ b/analyze/action.yml
@@ -74,7 +74,7 @@ inputs:
     required: true
     default: "true"
   token:
-    description: "GitHub token to use for authenticating with this instance of GitHub. The token needs the `security-events: write` permission."
+    description: "GitHub token to use for authenticating with this instance of GitHub. The token must be the built-in GitHub Actions token, and the workflow should have the `security-events: write` permission."
     required: false
     default: ${{ github.token }}
   matrix:
diff --git a/upload-sarif/action.yml b/upload-sarif/action.yml
index a6b74bbfc..354eb2928 100644
--- a/upload-sarif/action.yml
+++ b/upload-sarif/action.yml
@@ -20,7 +20,7 @@ inputs:
     description: "The sha of the HEAD of the ref where results will be uploaded. If not provided, the Action will use the GITHUB_SHA environment variable. If provided, the ref input must be provided as well. This input is ignored for pull requests from forks."
     required: false
   token:
-    description: "GitHub token to use for authenticating with this instance of GitHub. The token needs the `security-events: write` permission."
+    description: "GitHub token to use for authenticating with this instance of GitHub. The token must be the built-in GitHub Actions token, and the workflow should have the `security-events: write` permission."
     required: false
     default: ${{ github.token }}
   matrix: