diff --git a/.github/workflows/artifacts.yaml b/.github/workflows/artifacts.yaml
index 6dd0e7997fe1fc8fd8d6a9cd64eb5f980b31844c..7b4dd130d77b65e8238c63f2d44384f8a9aa60c8 100644
--- a/.github/workflows/artifacts.yaml
+++ b/.github/workflows/artifacts.yaml
@@ -132,7 +132,7 @@ jobs:
           echo ::set-output name=version::${VERSION}
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@0.2.4
+        uses: aquasecurity/trivy-action@0.2.5
         with:
           image-ref: "ghcr.io/dexidp/dex:${{ steps.details.outputs.version }}"
           format: "sarif"
diff --git a/.github/workflows/docker.yaml b/.github/workflows/docker.yaml
index 0617ea38c2540dbf6ee02f1e7f2c0a07c8dd6187..bb9714674795ca4cc6eb2debb7df06317135974b 100644
--- a/.github/workflows/docker.yaml
+++ b/.github/workflows/docker.yaml
@@ -96,7 +96,7 @@ jobs:
             org.opencontainers.image.documentation=https://dexidp.io/docs/
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@0.2.3
+        uses: aquasecurity/trivy-action@0.2.5
         with:
           image-ref: "ghcr.io/dexidp/dex:${{ steps.tags.outputs.version }}"
           format: "template"