diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
index 4b798baa..dbbdb9af 100644
--- a/.github/workflows/docker.yml
+++ b/.github/workflows/docker.yml
@@ -193,7 +193,7 @@ jobs:
           exit-code: "0" # Changed from "1" to "0" to prevent failing on EOL OS warnings
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3
+        uses: github/codeql-action/upload-sarif@16140ae1a102900babc80a33c44059580f687047 # v3
         with:
           sarif_file: "trivy-results-${{ env.ruby_platform }}.sarif"
           category: "docker-${{ env.ruby_platform }}"