diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index be584ff..0ad16cf 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -31,7 +31,7 @@ jobs:
           TAG=${{ env.TAG }}
 
     - name: Run Trivy vulnerability scanner
-      uses: aquasecurity/trivy-action@0.27.0
+      uses: aquasecurity/trivy-action@0.28.0
       with:
         image-ref: rancher/hardened-dns-node-cache:${{ env.TAG }}-amd64
         ignore-unfixed: true