diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index c104254..5b03049 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -220,7 +220,7 @@ jobs:
           fi
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 # 0.33.1
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # 0.35.0
         with:
           image-ref: swapify:scan
           format: "table"
@@ -230,7 +230,7 @@ jobs:
           trivy-config: config/trivy.yaml
 
       - name: Run Trivy and upload SARIF
-        uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 # 0.33.1
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # 0.35.0
         if: always()
         with:
           image-ref: swapify:scan