diff --git a/.github/workflows/docker-build.yml b/.github/workflows/docker-build.yml
index b40280e..63d0add 100644
--- a/.github/workflows/docker-build.yml
+++ b/.github/workflows/docker-build.yml
@@ -21,7 +21,7 @@ jobs:
       - name: ko build
         run: VERSION=${{ github.ref_name }} REPOSITORY=${GITHUB_REPOSITORY} make ko-build-all
       - name: Trivy Scan Image
-        uses: aquasecurity/trivy-action@fbd16365eb88e12433951383f5e99bd901fc618f # v0.12.0
+        uses: aquasecurity/trivy-action@b77b85c0254bba6789e787844f0585cde1e56320 # v0.13.0
         with:
           scan-type: 'fs'
           ignore-unfixed: true
diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml
index 0c1f1b2..6a61bd0 100644
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@@ -26,7 +26,7 @@ jobs:
           echo "Extracted version: $VERSION"
           echo "version=$(echo $VERSION)" >> $GITHUB_OUTPUT
       - name: Run Trivy vulnerability (Repo)
-        uses: aquasecurity/trivy-action@fbd16365eb88e12433951383f5e99bd901fc618f # v0.12.0
+        uses: aquasecurity/trivy-action@b77b85c0254bba6789e787844f0585cde1e56320 # v0.13.0
         with:
           scan-type: 'fs'
           ignore-unfixed: true