diff --git a/.github/workflows/general.security-scan.yaml b/.github/workflows/general.security-scan.yaml
index a47cef579b8..dc4d439425a 100644
--- a/.github/workflows/general.security-scan.yaml
+++ b/.github/workflows/general.security-scan.yaml
@@ -41,7 +41,7 @@ jobs:
           severity: "CRITICAL"
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@f5d217be74900c6ac8fbbe53f3c10376ba4e64da # tag=v2
+        uses: github/codeql-action/upload-sarif@7fee4ca032ac341c12486c4c06822c5221c76533 # tag=v2
         with:
           sarif_file: "trivy-repo-results.sarif"