diff --git a/.github/workflows/trivy-scan.yml b/.github/workflows/trivy-scan.yml
index 1bc1560..b4c5084 100644
--- a/.github/workflows/trivy-scan.yml
+++ b/.github/workflows/trivy-scan.yml
@@ -33,6 +33,6 @@ jobs:
         output: 'trivy-results.sarif'
         ignore-unfixed: true
         severity: 'HIGH,CRITICAL'
-    - uses: github/codeql-action/upload-sarif@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # v3.25.8
+    - uses: github/codeql-action/upload-sarif@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10
       with:
         sarif_file: 'trivy-results.sarif'