diff --git a/.github/workflows/pull-request.yaml b/.github/workflows/pull-request.yaml
index 92a18d2..9e8708e 100644
--- a/.github/workflows/pull-request.yaml
+++ b/.github/workflows/pull-request.yaml
@@ -37,7 +37,7 @@ jobs:
           # test with specific version
           sudo hd i mde@v0.0.4 -f
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@0.2.1
+        uses: aquasecurity/trivy-action@0.14.0
         if: github.event_name == 'pull_request'
         with:
           scan-type: 'fs'