diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 2f3bb8ec..7cf7b3c0 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -93,7 +93,7 @@ jobs:
           username: ${{ github.actor }}
           password: ${{ secrets.GITHUB_TOKEN }}
       - name: Run Trivy vulnerability scanner (blocking)
-        uses: aquasecurity/trivy-action@0.33.1
+        uses: aquasecurity/trivy-action@0.34.0
         with:
           image-ref: "ghcr.io/codelibs/${{ matrix.image }}:${{ github.ref_name }}"
           format: 'table'
@@ -101,7 +101,7 @@ jobs:
           severity: 'CRITICAL,HIGH'
           scanners: vuln
       - name: Run Trivy vulnerability scanner (SARIF report)
-        uses: aquasecurity/trivy-action@0.33.1
+        uses: aquasecurity/trivy-action@0.34.0
         if: always()
         with:
           image-ref: "ghcr.io/codelibs/${{ matrix.image }}:${{ github.ref_name }}"
diff --git a/.github/workflows/run-test.yml b/.github/workflows/run-test.yml
index 33eedaa6..ece3e81d 100644
--- a/.github/workflows/run-test.yml
+++ b/.github/workflows/run-test.yml
@@ -194,7 +194,7 @@ jobs:
       - name: Build backend image
         run: docker build -t recotem-backend:pr --target production backend/
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@0.33.1
+        uses: aquasecurity/trivy-action@0.34.0
         with:
           image-ref: recotem-backend:pr
           format: table