diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
index f902ee79..e0d82198 100644
--- a/.github/workflows/trivy.yml
+++ b/.github/workflows/trivy.yml
@@ -26,7 +26,7 @@ jobs:
         run: |
           TAG=${{ github.sha }} make docker-build
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@062f2592684a31eb3aa050cc61e7ca1451cecd3d
+        uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8
         with:
           image-ref: 'ghcr.io/rancher/turtles:${{ github.sha }}'
           format: 'sarif'