diff --git a/.github/workflows/secure-go.yml b/.github/workflows/secure-go.yml
index f7b6e889..c553d958 100644
--- a/.github/workflows/secure-go.yml
+++ b/.github/workflows/secure-go.yml
@@ -197,7 +197,7 @@ jobs:
 
       # ---- Trivy: filesystem vulnerability scanning ----
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@e368e328979b113139d6f9068e03accaed98a518 # 0.34.1
+        uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 # 0.34.1
         continue-on-error: true  # Don't fail workflow if Trivy has issues
         with:
           scan-type: 'fs'