diff --git a/.github/workflows/security.container.yml b/.github/workflows/security.container.yml
index cc2a7c089..6a2721f8f 100644
--- a/.github/workflows/security.container.yml
+++ b/.github/workflows/security.container.yml
@@ -23,7 +23,7 @@ jobs:
         with:
           framework: dockerfile
           skip_check: CKV_DOCKER_2
-      - uses: github/codeql-action/upload-sarif@fe23b5a3e1de4ae7f64965059233ee74e959035e # tag=codeql-bundle-20221211
+      - uses: github/codeql-action/upload-sarif@16150320c5db0d4942ea2bd4974fc365d6324737 # tag=codeql-bundle-20221211
         if: always()
         with:
           category: checkov-helm
diff --git a/.github/workflows/security.helm.yml b/.github/workflows/security.helm.yml
index 5d058ecca..3d08d2e23 100644
--- a/.github/workflows/security.helm.yml
+++ b/.github/workflows/security.helm.yml
@@ -24,7 +24,7 @@ jobs:
           directory: charts/image-registry-metrics-exporter
           framework: helm
           skip_check: CKV_K8S_11,CKV_K8S_15,CKV_K8S_21,CKV_K8S_35,CKV_K8S_43
-      - uses: github/codeql-action/upload-sarif@fe23b5a3e1de4ae7f64965059233ee74e959035e # tag=codeql-bundle-20221211
+      - uses: github/codeql-action/upload-sarif@16150320c5db0d4942ea2bd4974fc365d6324737 # tag=codeql-bundle-20221211
         if: always()
         with:
           category: checkov-helm