diff --git a/.github/workflows/vib-build.yml b/.github/workflows/vib-build.yml
index 3c68e4d..12f60d2 100644
--- a/.github/workflows/vib-build.yml
+++ b/.github/workflows/vib-build.yml
@@ -18,7 +18,10 @@ jobs:
     steps:
     - uses: actions/checkout@v4
 
-    - uses: vanilla-os/vib-gh-action@v0.3.2-2
+    - uses: vanilla-os/vib-gh-action@v0.3.3-1
+      with:
+        recipe: 'recipe.yml'
+        plugins: 'Vanilla-OS/vib-fsguard:v1.2-1'
 
     - name: Build the Docker image
       run: docker image build -f Containerfile --tag ghcr.io/vanilla-os/vm:main .
diff --git a/.github/workflows/vib-pr.yml b/.github/workflows/vib-pr.yml
index 7b6efbe..415a30a 100644
--- a/.github/workflows/vib-pr.yml
+++ b/.github/workflows/vib-pr.yml
@@ -13,7 +13,10 @@ jobs:
     steps:
     - uses: actions/checkout@v4
 
-    - uses: vanilla-os/vib-gh-action@v0.3.2-2
+    - uses: vanilla-os/vib-gh-action@v0.3.3-1
+      with:
+        recipe: 'recipe.yml'
+        plugins: 'Vanilla-OS/vib-fsguard:v1.2-1'
 
     - name: Build the Docker image
       run: docker image build -f Containerfile --tag vanillaos/vm:validation .
diff --git a/recipe.yml b/recipe.yml
index b6eb401..08fe121 100644
--- a/recipe.yml
+++ b/recipe.yml
@@ -35,3 +35,17 @@ modules:
   - apt autoremove -y
   - apt clean
   - lpkg --lock
+
+- name: fsguard
+  type: fsguard
+  FsGuardLocation: "/usr/sbin/FsGuard"
+  CustomFsGuard: false
+  GenerateKey: true
+  FilelistPaths: ["/usr/bin"]
+  modules:
+    - name: remove-prev-fsguard
+      type: shell
+      commands:
+        - rm -rf /FsGuard 
+        - rm -f ./minisign.pub ./minisign.key 
+        - chmod +x /usr/sbin/init