diff --git a/.github/workflows/scan-image.yml b/.github/workflows/scan-image.yml
index 9e995d8..a94b480 100644
--- a/.github/workflows/scan-image.yml
+++ b/.github/workflows/scan-image.yml
@@ -30,7 +30,7 @@
 
           - name: Scan Image
             id: scan_image
-            uses: aquasecurity/trivy-action@b2933f565dbc598b29947660e66259e3c7bc8561 # v0.20.0
+            uses: aquasecurity/trivy-action@fd25fed6972e341ff0007ddb61f77e88103953c2 # v0.21.0
             with:
               image-ref: ingestion-scan
               exit-code: 1
@@ -42,7 +42,7 @@
           - name: Scan Image (On SARIF Scan Failure)
             if: failure() && steps.scan_image.outcome == 'failure'
             id: scan_image_on_failure
-            uses: aquasecurity/trivy-action@b2933f565dbc598b29947660e66259e3c7bc8561 # v0.20.0
+            uses: aquasecurity/trivy-action@fd25fed6972e341ff0007ddb61f77e88103953c2 # v0.21.0
             with:
               image-ref: ingestion-scan
               exit-code: 1