diff --git a/.github/workflows/00_trivy_scan.yaml b/.github/workflows/00_trivy_scan.yaml
index 78dc8b9..a14e0f8 100644
--- a/.github/workflows/00_trivy_scan.yaml
+++ b/.github/workflows/00_trivy_scan.yaml
@@ -51,7 +51,7 @@ jobs:
           limit-severities-for-sarif: true
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # v3.28.5
+        uses: github/codeql-action/upload-sarif@17a820bf2e43b47be2c72b39cc905417bc1ab6d0 # v3.28.6
         with:
           sarif_file: "trivy-results.sarif"