diff --git a/.github/workflows/trivy.yaml b/.github/workflows/trivy.yaml
index 46acda87ed5e..add4539f7f26 100644
--- a/.github/workflows/trivy.yaml
+++ b/.github/workflows/trivy.yaml
@@ -44,7 +44,7 @@ jobs:
       run: curl -fsSO https://raw.githubusercontent.com/rancher/vexhub/refs/heads/main/reports/rancher.openvex.json
 
     - name: Run Trivy vulnerability scanner
-      uses: aquasecurity/trivy-action@0.28.0
+      uses: aquasecurity/trivy-action@0.29.0
       with:
         image-ref: 'rancher/k3s:latest'
         format: 'table'