diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 6e78ff2..b1cc9ce 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -120,7 +120,7 @@ jobs:
           push: false
 
       - name: Run Trivy vulnerability scanner on generated docker image
-        uses: aquasecurity/trivy-action@1f0aa582c8c8f5f7639610d6d38baddfea4fdcee # 0.9.2
+        uses: aquasecurity/trivy-action@a20de5420d57c4102486cdd9578b45609c99d7eb # 0.26.0
         with:
           image-ref: jonaspammer/some-package:latest
           format: table