diff --git a/.github/workflows/reusable-container-image-scan.yml b/.github/workflows/reusable-container-image-scan.yml
index 173d9ebc..88092b89 100644
--- a/.github/workflows/reusable-container-image-scan.yml
+++ b/.github/workflows/reusable-container-image-scan.yml
@@ -77,6 +77,6 @@ jobs:
           severity: 'HIGH,CRITICAL'
       - name: Upload Trivy scan results to GitHub Security tab
         if: ${{ steps.get-digests.outputs.destination != null }}
-        uses: github/codeql-action/upload-sarif@3ab4101902695724f9365a384f86c1074d94e18c # 3.24.7
+        uses: github/codeql-action/upload-sarif@b7cec7526559c32f1616476ff32d17ba4c59b2d6 # 3.25.5
         with:
           sarif_file: "trivy-results.sarif"