diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index f164657..d0b5c88 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -71,7 +71,7 @@ jobs:
           provenance: ${{ github.event_name != 'pull_request' }}
 
       - name: Run Grype vulnerability scanner
-        uses: anchore/scan-action@62370b53ab026f5d09b9fb43a7b5ec4b73c1a8e0 # v3.3.7
+        uses: anchore/scan-action@896d5f410043987c8fe18f60d91bf199e436840c # v3.3.8
         continue-on-error: true
         id: scan
         with: