diff --git a/components/enrichers/reachability/task.yaml b/components/enrichers/reachability/task.yaml
index e5b08161d..e48ab1d40 100644
--- a/components/enrichers/reachability/task.yaml
+++ b/components/enrichers/reachability/task.yaml
@@ -18,15 +18,19 @@ spec:
       description: The workspace containing the source-code to scan.
   steps:
   - name: run-cdxgen
-    image: ghcr.io/cyclonedx/cdxgen:v10.9.5
+    image: ghcr.io/cyclonedx/cdxgen:v11.1.0
     command:
       - node
+    env:
+      - name: NPM_INSTALL_ARGS
+        value: "--force --ignore-scripts --package-lock --legacy-peer-deps"
     args:
       - /opt/cdxgen/bin/cdxgen.js
       - -t
       - $(params.enricher-reachability-programming-language)
       - --deep
       - -r
+      - --feature-flags safe-pip-install
       - -p
       - -o
       - $(workspaces.output.path)/source-code/bom.json