diff --git a/.gitea/workflows/run-trivy-scan.yaml b/.gitea/workflows/run-trivy-scan.yaml
index 382c973..c07a2bc 100644
--- a/.gitea/workflows/run-trivy-scan.yaml
+++ b/.gitea/workflows/run-trivy-scan.yaml
@@ -120,8 +120,8 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-      - uses: https://gitea.t000-n.de/t.behrendt/trivy-actions/setup-trivy@1.4.4
-      - uses: https://gitea.t000-n.de/t.behrendt/trivy-actions/setup-db@1.4.4
+      - uses: https://gitea.t000-n.de/t.behrendt/trivy-actions/setup-trivy@83a7cef9f19e3a5a30311839f99f83690a490cf8 # 1.4.5
+      - uses: https://gitea.t000-n.de/t.behrendt/trivy-actions/setup-db@83a7cef9f19e3a5a30311839f99f83690a490cf8 # 1.4.5
       - run: |
           trivy fs --cache-dir "$TRIVY_CACHE_DIR" --exit-code 0 --format sarif --output fs-sarif.json --scanners vuln .
         env:
@@ -130,7 +130,7 @@ jobs:
         with:
           name: fs-sarif
           path: fs-sarif.json
-  
+
   merge:
     runs-on: ubuntu-latest
     needs: [config-scan, image-scan, fs-scan]