diff --git a/.github/workflows/security.container.yml b/.github/workflows/security.container.yml
index bb3abdcaf..9a4992c1c 100644
--- a/.github/workflows/security.container.yml
+++ b/.github/workflows/security.container.yml
@@ -23,7 +23,7 @@ jobs:
         with:
           framework: dockerfile
           skip_check: CKV_DOCKER_2
-      - uses: github/codeql-action/upload-sarif@43750fe4fc4f068f04f2215206e6f6a29c78c763 # tag=codeql-bundle-20221211
+      - uses: github/codeql-action/upload-sarif@896079047b4bb059ba6f150a5d87d47dde99e6e5 # codeql-bundle-20221211
         if: always()
         with:
           category: checkov-helm
diff --git a/.github/workflows/security.helm.yml b/.github/workflows/security.helm.yml
index 9fc95026f..ff59dbcc2 100644
--- a/.github/workflows/security.helm.yml
+++ b/.github/workflows/security.helm.yml
@@ -24,7 +24,7 @@ jobs:
           directory: charts/gitlab-ci-runner-exporter
           framework: helm
           skip_check: CKV_K8S_11,CKV_K8S_15,CKV_K8S_21,CKV_K8S_35,CKV_K8S_43
-      - uses: github/codeql-action/upload-sarif@43750fe4fc4f068f04f2215206e6f6a29c78c763 # tag=codeql-bundle-20221211
+      - uses: github/codeql-action/upload-sarif@896079047b4bb059ba6f150a5d87d47dde99e6e5 # codeql-bundle-20221211
         if: always()
         with:
           category: checkov-helm