diff --git a/.github/workflows/code-quality.yml b/.github/workflows/code-quality.yml
index 783e15e..a96c7c3 100644
--- a/.github/workflows/code-quality.yml
+++ b/.github/workflows/code-quality.yml
@@ -44,7 +44,7 @@ jobs:
         run: task sbom
 
       - name: Run Grype vulnerability scan
-        uses: anchore/scan-action@7037fa011853d5a11690026fb85feee79f4c946c # v7.3.2
+        uses: anchore/scan-action@e1165082ffb1fe366ebaf02d8526e7c4989ea9d2 # v7.4.0
         id: grype-scan
         with:
           path: "."