diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index 8d6f996..00a1911 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -15,7 +15,7 @@ jobs:
     name: Trivy Security Scan
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - name: Trivy scan (deps, secrets, IaC, Dockerfiles)
         uses: aquasecurity/trivy-action@v0.36.0
         with: