diff --git a/.github/workflows/check-vulnerabilities.yaml b/.github/workflows/check-vulnerabilities.yaml
index 8cc106f..2b2ae05 100644
--- a/.github/workflows/check-vulnerabilities.yaml
+++ b/.github/workflows/check-vulnerabilities.yaml
@@ -16,7 +16,7 @@ jobs:
     runs-on: "${{ inputs.runs_on}}"
     steps:
       - name: Install Cosign
-        uses: sigstore/cosign-installer@b18d21aaa20ef40c4e681202a598b7591d5be577 # ratchet:sigstore/cosign-installer@main
+        uses: sigstore/cosign-installer@d58896d6a1865668819e1d91763c7751a165e159 # ratchet:sigstore/cosign-installer@main
         with:
           cosign-release: 'v1.13.1'
       - name: Check install!