diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index cc7ceb2..a6fd615 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -51,7 +51,7 @@ jobs:
 
 # setting up trivy security scanner  
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1
         with:
           image-ref: 'consensys/quorum-explorer:${{ env.DOCKER_TAG }}'
           format: 'sarif'