diff --git a/doc/user/application_security/index.md b/doc/user/application_security/index.md
index 82a018c0ae988d9a88ddca52f24ee65797614390..40400bf6db8f6b6485d04231414bf02ee777e258 100644
--- a/doc/user/application_security/index.md
+++ b/doc/user/application_security/index.md
@@ -92,7 +92,9 @@ For more details about each of the security scanning tools, see their respective
 
 By default, GitLab security scanners use `registry.gitlab.com/gitlab-org/security-products/analyzers` as the
 base address for Docker images. You can override this globally by setting the CI/CD variable
-`SECURE_ANALYZERS_PREFIX` to another location. Note that this affects all scanners at once.
+`SECURE_ANALYZERS_PREFIX` to another location. Note that this affects all scanners at once, except
+the container-scanning analyzer which uses
+`registry.gitlab.com/security-products/container-scanning` as its registry.
 
 ### Use security scanning tools with Pipelines for Merge Requests
 
diff --git a/lib/gitlab/ci/templates/Security/Container-Scanning.gitlab-ci.yml b/lib/gitlab/ci/templates/Security/Container-Scanning.gitlab-ci.yml
index 92e74f9eb00d42b9c38d1490cd92ba9d43edbe30..695aaa379246668e92094fb2a5f987313fb22f30 100644
--- a/lib/gitlab/ci/templates/Security/Container-Scanning.gitlab-ci.yml
+++ b/lib/gitlab/ci/templates/Security/Container-Scanning.gitlab-ci.yml
@@ -58,7 +58,7 @@ container_scanning:
 container_scanning_new:
   extends: .cs_common
   variables:
-    CS_PROJECT: 'container-scanning'
+    CS_ANALYZER_IMAGE: registry.gitlab.com/security-products/container-scanning:4
   script:
     - gtcs scan
   artifacts: