diff --git a/.github/workflows/push.yml b/.github/workflows/push.yml
index 5514ca17..e96fa7ed 100644
--- a/.github/workflows/push.yml
+++ b/.github/workflows/push.yml
@@ -548,7 +548,7 @@ jobs:
           password: ${{ secrets.ENOPS5919_DOCKER_SCOUT_CI_PAT }}
 
       - name: Analyze for critical and high CVEs -> linux/amd64
-        uses: docker/scout-action@bacf462e8d090c09660de30a6ccc718035f961e3 # v1.20.4
+        uses: docker/scout-action@cd72f264beff1cd72735de31148b9d3244a0234a # v1.21.0
         with:
           command: cves
           image: ${{ steps.meta.outputs.tags[0] }}
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 1a2fb40e..47f7b140 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -417,7 +417,7 @@ jobs:
           password: ${{ secrets.ENOPS5919_DOCKER_SCOUT_CI_PAT }}
 
       - name: Analyze for critical and high CVEs -> linux/amd64
-        uses: docker/scout-action@bacf462e8d090c09660de30a6ccc718035f961e3 # v1.20.4
+        uses: docker/scout-action@cd72f264beff1cd72735de31148b9d3244a0234a # v1.21.0
         with:
           command: cves
           image: ${{ steps.meta.outputs.tags[0] }}