diff --git a/action.yml b/action.yml
index 3e6766f..e8d6d6d 100644
--- a/action.yml
+++ b/action.yml
@@ -124,7 +124,7 @@ runs:
   - name: Upload Trivy scan results to GitHub Security tab
     if: ${{ inputs.trivy == 'true' }}
     # See https://github.com/github/codeql-action/commits/main/
-    uses: github/codeql-action/upload-sarif@e7c0c9d71b7bd108fd12e06b56fc58d3d154164d
+    uses: github/codeql-action/upload-sarif@a91a3f76789881261b540fb7aa8a527214f8ac01
     with:
       sarif_file: trivy-results.sarif
       category: ${{ fromJSON(steps.meta.outputs.json).tags[0] }}
diff --git a/docker-build-push/action.yml b/docker-build-push/action.yml
index 5606643..61c6d90 100644
--- a/docker-build-push/action.yml
+++ b/docker-build-push/action.yml
@@ -153,7 +153,7 @@ runs:
   - name: Upload Trivy scan results to GitHub Security tab
     if: ${{ inputs.trivy == 'true' }}
     # See https://github.com/github/codeql-action/commits/main/
-    uses: github/codeql-action/upload-sarif@e7c0c9d71b7bd108fd12e06b56fc58d3d154164d
+    uses: github/codeql-action/upload-sarif@a91a3f76789881261b540fb7aa8a527214f8ac01
     with:
       sarif_file: trivy-results.sarif
       category: ${{ fromJSON(steps.meta.outputs.json).tags[0] }}