diff --git a/.github/workflows/open-source-security.yml b/.github/workflows/open-source-security.yml
index ed3c4909b4a..f2f35de96d9 100644
--- a/.github/workflows/open-source-security.yml
+++ b/.github/workflows/open-source-security.yml
@@ -16,13 +16,13 @@ jobs:
       - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
 
       - name: artifactPrepareVersion
-        uses: SAP/project-piper-action@bdd04e90dbab9ca2d5a7dd50886b6bac03888360 # v1.22.1
+        uses: SAP/project-piper-action@ca6d6ccb79a0a21fdf542ab2a2390cd9c2f1e34f # v1.22.5
         with:
           step-name: artifactPrepareVersion
           flags: --versioningType cloud_noTag
 
       - name: detectExecuteScan
-        uses: SAP/project-piper-action@bdd04e90dbab9ca2d5a7dd50886b6bac03888360 # v1.22.1
+        uses: SAP/project-piper-action@ca6d6ccb79a0a21fdf542ab2a2390cd9c2f1e34f # v1.22.5
         with:
           step-name: detectExecuteScan
           flags: '--token ${{ secrets.DETECT_TOKEN }}'