diff --git a/.github/workflows/vulnerability-scan.yaml b/.github/workflows/vulnerability-scan.yaml
index 88d0f8b76..25dc1e754 100644
--- a/.github/workflows/vulnerability-scan.yaml
+++ b/.github/workflows/vulnerability-scan.yaml
@@ -37,7 +37,7 @@ jobs:
 
       - name: Restore Database
         id: database-restore
-        uses: actions/cache/restore@caa296126883cff596d87d8935842f9db880ef25 # v5.1.0
+        uses: actions/cache/restore@55cc8345863c7cc4c66a329aec7e433d2d1c52a9 # v6.1.0
         with:
           key: grype-db-${{ steps.cache.outputs.key }}
           path: ~/.cache/grype/db
@@ -54,7 +54,7 @@ jobs:
 
       - if: ${{ always() && steps.database-restore.outputs.cache-hit != 'true' }}
         name: Cache Database
-        uses: actions/cache/save@caa296126883cff596d87d8935842f9db880ef25 # v5.1.0
+        uses: actions/cache/save@55cc8345863c7cc4c66a329aec7e433d2d1c52a9 # v6.1.0
         with:
           key: grype-db-${{ steps.cache.outputs.key }}
           path: ~/.cache/grype/db
@@ -80,7 +80,7 @@ jobs:
           echo "key=$(date -u +'%Y-%m-%d')" >> $GITHUB_OUTPUT
 
       - name: Restore Database
-        uses: actions/cache/restore@caa296126883cff596d87d8935842f9db880ef25 # v5.1.0
+        uses: actions/cache/restore@55cc8345863c7cc4c66a329aec7e433d2d1c52a9 # v6.1.0
         with:
           key: grype-db-${{ steps.cache.outputs.key }}
           path: ~/.cache/grype/db