diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
index 0d78c82..ae1c5ee 100644
--- a/.github/workflows/security-scan.yml
+++ b/.github/workflows/security-scan.yml
@@ -37,7 +37,7 @@ jobs:
           tags: clawmetry:scan
 
       - name: Run Trivy vulnerability scan on Docker image
-        uses: aquasecurity/trivy-action@0.35.0
+        uses: aquasecurity/trivy-action@v0.36.0
         with:
           image-ref: clawmetry:scan
           format: sarif
@@ -54,7 +54,7 @@ jobs:
 
       - name: Run Trivy vulnerability scan on Dockerfile (misconfiguration)
         if: always()
-        uses: aquasecurity/trivy-action@0.35.0
+        uses: aquasecurity/trivy-action@v0.36.0
         with:
           scan-type: config
           scan-ref: Dockerfile