diff --git a/.github/workflows/sign.yaml b/.github/workflows/sign.yaml
index c8420ef..c7eeef4 100644
--- a/.github/workflows/sign.yaml
+++ b/.github/workflows/sign.yaml
@@ -42,7 +42,7 @@ jobs:
         password: ${{ secrets.GITHUB_TOKEN }}
 
     - name: Scan Image
-      uses: aquasecurity/trivy-action@1f0aa582c8c8f5f7639610d6d38baddfea4fdcee  # 0.9.2
+      uses: aquasecurity/trivy-action@062f2592684a31eb3aa050cc61e7ca1451cecd3d  # 0.18.0
       with:
         scan-type: image
         security-checks: vuln
diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml
index 912c11f..ab40bdd 100644
--- a/.github/workflows/test.yaml
+++ b/.github/workflows/test.yaml
@@ -79,7 +79,7 @@ jobs:
         yamllint_config_filepath: .yamllint
 
     - name: Scan Repo
-      uses: aquasecurity/trivy-action@1f0aa582c8c8f5f7639610d6d38baddfea4fdcee  # 0.9.2
+      uses: aquasecurity/trivy-action@062f2592684a31eb3aa050cc61e7ca1451cecd3d  # 0.18.0
       with:
         scan-type: 'fs'
         ignore-unfixed: true