diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 6b7bba4..0286975 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -193,7 +193,7 @@ jobs:
           if-no-files-found: error
 
       - name: Generate SBOM
-        uses: anchore/sbom-action@0b82b0b1a22399a1c542d4d656f70cd903571b5c # v0.21.1
+        uses: anchore/sbom-action@62ad5284b8ced813296287a0b63906cb364b73ee # v0.22.0
         id: sbom
         with:
           format: spdx-json
diff --git a/.github/workflows/test-and-report.yml b/.github/workflows/test-and-report.yml
index 8332ce2..e2dcdb9 100644
--- a/.github/workflows/test-and-report.yml
+++ b/.github/workflows/test-and-report.yml
@@ -112,7 +112,7 @@ jobs:
         run: npm run test:licenses
 
       - name: Generate SBOM
-        uses: anchore/sbom-action@0b82b0b1a22399a1c542d4d656f70cd903571b5c # v0.21.1
+        uses: anchore/sbom-action@62ad5284b8ced813296287a0b63906cb364b73ee # v0.22.0
         id: sbom
         with:
           format: spdx-json