diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index e54ac36588..778572ca5c 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -36,7 +36,7 @@ jobs:
             - name: Run Semgrep
               run: semgrep scan --sarif --output=semgrep.sarif --config=p/auto --config=p/dockerfile --config=p/typescript --config=p/javascript --config=p/java --metrics=off --verbose
             - name: Upload SARIF file for GitHub Advanced Security Dashboard
-              uses: github/codeql-action/upload-sarif@97a2bfd2a3d26d458da69e548f7f859d6fca634d # CodeQL Bundle v2.16.1
+              uses: github/codeql-action/upload-sarif@b1e4dc3db58c9601794e22a9f6d28d45461b9dbf # CodeQL Bundle v2.16.1
               with:
                   sarif_file: semgrep.sarif
               if: always()