diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index ac4ec3bc..bfe8dd0e 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -19,7 +19,7 @@ jobs:
         uses: actions/checkout@v3
 
       - name: Run Trivy vulnerability scanner in repo mode
-        uses: aquasecurity/trivy-action@0.11.2
+        uses: aquasecurity/trivy-action@0.12.0
         if: ${{ ! github.event.schedule }} # Do not run inline checks when running periodically
         with:
           scan-type: fs
@@ -29,7 +29,7 @@ jobs:
           skip-files: 'tests/integration/consumer-producer/pom.xml'
 
       - name: Run Trivy vulnerability scanner sarif output
-        uses: aquasecurity/trivy-action@0.11.2
+        uses: aquasecurity/trivy-action@0.12.0
         if: ${{ github.event.schedule }} # Generate sarif when running periodically
         with:
           scan-type: fs