diff --git a/.github/workflows/trivy-scan.yml b/.github/workflows/trivy-scan.yml
index 41e9d31..51470a9 100644
--- a/.github/workflows/trivy-scan.yml
+++ b/.github/workflows/trivy-scan.yml
@@ -83,7 +83,7 @@ jobs:
           cat cves.txt| jq '.[] | select(.state == "dismissed" or .state == "closed" or .state == "fixed") | .rule.id' | tr -d '"' > .trivyignore
 
       - name: Run Trivy scanner output sarif
-        uses: aquasecurity/trivy-action@0.28.0
+        uses: aquasecurity/trivy-action@0.36.0
         with:
           scan-type: 'fs'
           scan-ref: '${{ inputs.tool }}'