diff --git a/.github/actions/docker-scan/action.yml b/.github/actions/docker-scan/action.yml
index 7ca3618f..d4fcc82b 100644
--- a/.github/actions/docker-scan/action.yml
+++ b/.github/actions/docker-scan/action.yml
@@ -33,7 +33,7 @@ runs:
       shell: bash
 
     - name: Upload trivy scan results to github security tab
-      uses: github/codeql-action/upload-sarif@66b90a5db151a8042fa97405c6cf843bbe433f7b # v2.22.7
+      uses: github/codeql-action/upload-sarif@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8
       with:
         sarif_file: "trivy-results.sarif"
         token: ${{ inputs.token }}