diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
index ca27366..98b8922 100644
--- a/.github/workflows/security-scan.yml
+++ b/.github/workflows/security-scan.yml
@@ -147,7 +147,7 @@ jobs:
         run: docker build -t dockervault:scan .
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@0.35.0
+        uses: aquasecurity/trivy-action@v0.36.0
         with:
           image-ref: 'dockervault:scan'
           format: 'sarif'
@@ -164,7 +164,7 @@ jobs:
 
       - name: Run Trivy (table output for logs)
         if: always()
-        uses: aquasecurity/trivy-action@0.35.0
+        uses: aquasecurity/trivy-action@v0.36.0
         with:
           image-ref: 'dockervault:scan'
           format: 'table'
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index 4eb5c76..cb619d6 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -214,7 +214,7 @@ jobs:
         python-version: '3.14'
     
     - name: Run Trivy vulnerability scanner
-      uses: aquasecurity/trivy-action@0.35.0
+      uses: aquasecurity/trivy-action@v0.36.0
       with:
         scan-type: 'fs'
         scan-ref: '.'