diff --git a/.github/workflows/code-quality.yml b/.github/workflows/code-quality.yml
index 51e3995..b70fb7d 100644
--- a/.github/workflows/code-quality.yml
+++ b/.github/workflows/code-quality.yml
@@ -45,7 +45,7 @@ jobs:
         run: task sbom
 
       - name: Upload Security Reports as Artifacts
-        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
+        uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0
         if: always()  # Upload even if security scan fails
         with:
           name: security-reports