diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index 2419df28d3b..108277de976 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -36,7 +36,7 @@ jobs:
             - name: Run Semgrep
               run: semgrep scan --sarif --output=semgrep.sarif --config=p/auto --config=p/dockerfile --config=p/typescript --config=p/javascript --config=p/java --metrics=off --verbose
             - name: Upload SARIF file for GitHub Advanced Security Dashboard
-              uses: github/codeql-action/upload-sarif@65c74964a9ed8c44ed9f19d4bbc5757a6a8e9ab9 # CodeQL Bundle v2.16.1
+              uses: github/codeql-action/upload-sarif@9f45e7498becbbc08084a122b4be9ab534ac6d88 # CodeQL Bundle v2.16.1
               with:
                   sarif_file: semgrep.sarif
               if: always()