diff --git a/.github/workflows/run-trivy.yaml b/.github/workflows/run-trivy.yaml
index 920d82d26..fab10dea2 100644
--- a/.github/workflows/run-trivy.yaml
+++ b/.github/workflows/run-trivy.yaml
@@ -38,6 +38,6 @@ jobs:
 
       # https://github.com/github/codeql-action
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@e56cfd0877b4826be144d11aa31e6c64a55828e9 # v2
+        uses: github/codeql-action/upload-sarif@3ab4101902695724f9365a384f86c1074d94e18c # v2
         with:
           sarif_file: trivy-results.sarif