diff --git a/.github/workflows/python.yml b/.github/workflows/python.yml
index 9be6745..13e2356 100644
--- a/.github/workflows/python.yml
+++ b/.github/workflows/python.yml
@@ -265,7 +265,7 @@ jobs:
     #       echo "Loaded image tag: ${{ steps.docker_load_image.outputs.image_with_tag }}"
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action
+        uses: aquasecurity/trivy-action@0.24.0
         with:
           input: './pyramid.tar'
           format: 'github'