diff --git a/.github/workflows/security.container.yml b/.github/workflows/security.container.yml
index 91b4cecf2..a3dcb653b 100644
--- a/.github/workflows/security.container.yml
+++ b/.github/workflows/security.container.yml
@@ -23,7 +23,7 @@ jobs:
         with:
           framework: dockerfile
           skip_check: CKV_DOCKER_2
-      - uses: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a # tag=codeql-bundle-20221211
+      - uses: github/codeql-action/upload-sarif@4712487dc37a6beb8338f27ecc80f504728ff7e2 # tag=codeql-bundle-20221211
         if: always()
         with:
           category: checkov-helm
diff --git a/.github/workflows/security.helm.yml b/.github/workflows/security.helm.yml
index 47a04ee44..a84dac9bd 100644
--- a/.github/workflows/security.helm.yml
+++ b/.github/workflows/security.helm.yml
@@ -24,7 +24,7 @@ jobs:
           directory: charts/image-registry-metrics-exporter
           framework: helm
           skip_check: CKV_K8S_11,CKV_K8S_15,CKV_K8S_21,CKV_K8S_35,CKV_K8S_43
-      - uses: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a # tag=codeql-bundle-20221211
+      - uses: github/codeql-action/upload-sarif@4712487dc37a6beb8338f27ecc80f504728ff7e2 # tag=codeql-bundle-20221211
         if: always()
         with:
           category: checkov-helm