diff --git a/.github/workflows/reusable-cve-scan.yml b/.github/workflows/reusable-cve-scan.yml
index ad9fb69..47a1369 100644
--- a/.github/workflows/reusable-cve-scan.yml
+++ b/.github/workflows/reusable-cve-scan.yml
@@ -95,7 +95,7 @@ jobs:
           fi
 
       - name: Run Trivy
-        uses: aquasecurity/trivy-action@0.35.0 # NOSONAR githubactions:S7637 - verified action creator
+        uses: aquasecurity/trivy-action@v0.36.0 # NOSONAR githubactions:S7637 - verified action creator
         env:
           TRIVY_DISABLE_VEX_NOTICE: 'true'
           TRIVY_SHOW_SUPPRESSED: 'true'