diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 3f2c08d..1c9971f 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -394,7 +394,7 @@ jobs:
         docker inspect otel-core-example:pr-${{ github.event.pull_request.number }}
 
     - name: Run Trivy vulnerability scanner
-      uses: aquasecurity/trivy-action@97e0b3872f55f89b95b2f65b3dbab56962816478 # 0.34.2
+      uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # 0.35.0
       with:
         image-ref: otel-core-example:pr-${{ github.event.pull_request.number }}
         format: 'sarif'