diff --git a/.github/workflows/image-scan.yml b/.github/workflows/image-scan.yml
index 0a8cc5b..6746379 100644
--- a/.github/workflows/image-scan.yml
+++ b/.github/workflows/image-scan.yml
@@ -42,7 +42,7 @@ jobs:
         vuln-type: os,library
         severity: CRITICAL,HIGH
     - name: Upload Trivy scan results to GitHub Security tab
-      uses: github/codeql-action/upload-sarif@v3
+      uses: github/codeql-action/upload-sarif@v4
       with:
         sarif_file: 'trivy-results.sarif'
       if: always() && github.repository == 'hairyhenderson/go-which'