diff --git a/.github/workflows/sbom.yml b/.github/workflows/sbom.yml
index 2b57dcea09..27f720ea49 100644
--- a/.github/workflows/sbom.yml
+++ b/.github/workflows/sbom.yml
@@ -55,7 +55,7 @@ jobs:
         path: sbom.spdx.json
 
     - name: SBOM upload
-      uses: advanced-security/spdx-dependency-submission-action@v0.0.1
+      uses: advanced-security/spdx-dependency-submission-action@v0.2.0
 
     - name: Upload Trivy scan results to GitHub Security tab [all]
       uses: github/codeql-action/upload-sarif@v4