diff --git a/.github/workflows/analysis.yml b/.github/workflows/analysis.yml
index ab26ac19b..8c5a228c7 100644
--- a/.github/workflows/analysis.yml
+++ b/.github/workflows/analysis.yml
@@ -111,7 +111,7 @@ jobs:
       - uses: actions/checkout@v4
 
       - name: Run Trivy vulnerability scanner in repo mode
-        uses: aquasecurity/trivy-action@0.28.0
+        uses: aquasecurity/trivy-action@0.29.0
         with:
           format: "sarif"
           output: "trivy-results.sarif"
diff --git a/.github/workflows/cd-to-prod-on-workflow-dispatch.yml b/.github/workflows/cd-to-prod-on-workflow-dispatch.yml
index fa0e1a584..576b5b6bc 100644
--- a/.github/workflows/cd-to-prod-on-workflow-dispatch.yml
+++ b/.github/workflows/cd-to-prod-on-workflow-dispatch.yml
@@ -60,7 +60,7 @@ jobs:
     runs-on: ubuntu-22.04
     steps:
       - name: Penetration Test
-        uses: zaproxy/action-full-scan@v0.11.0
+        uses: zaproxy/action-full-scan@v0.12.0
         with:
           target: https://paytransparency.fin.gov.bc.ca
           cmd_options: "-a"
diff --git a/.github/workflows/scheduled.yml b/.github/workflows/scheduled.yml
index 281973d0a..fc75cd2c8 100644
--- a/.github/workflows/scheduled.yml
+++ b/.github/workflows/scheduled.yml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-22.04
     steps:
       - name: Penetration Test
-        uses: zaproxy/action-full-scan@v0.11.0
+        uses: zaproxy/action-full-scan@v0.12.0
         with:
           target: https://paytransparency.fin.gov.bc.ca
           cmd_options: "-a"