diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 90cb849..d6bd62e 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -32,7 +32,7 @@ jobs:
           TAG=${{ env.TAG }}
 
     - name: Run Trivy vulnerability scanner
-      uses: aquasecurity/trivy-action@0.27.0
+      uses: aquasecurity/trivy-action@0.28.0
       with:
         image-ref: rancher/hardened-cni-plugins:${{ env.TAG }}-amd64
         ignore-unfixed: true