diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index 5225f8022..8aeae833c 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -36,7 +36,7 @@ jobs:
       - name: Run Semgrep
         run: semgrep scan --sarif --output=semgrep.sarif --config=p/auto --config=p/dockerfile --config=p/typescript --config=p/javascript --metrics=off --verbose
       - name: Upload SARIF file for GitHub Advanced Security Dashboard
-        uses: github/codeql-action/upload-sarif@7f44048739d1ed01dcd72086ab991988a34a30d0 # CodeQL Bundle v2.16.1
+        uses: github/codeql-action/upload-sarif@52f930e50a5971cb8a0163b8ae04f2344c26154c # CodeQL Bundle v2.16.1
         with:
           sarif_file: semgrep.sarif
         if: always()
\ No newline at end of file