diff --git a/.github/workflows/merge-to-master.yaml b/.github/workflows/merge-to-master.yaml
index 4ce316c4b7..b2e28253c9 100644
--- a/.github/workflows/merge-to-master.yaml
+++ b/.github/workflows/merge-to-master.yaml
@@ -119,6 +119,6 @@ jobs:
 
       - name: Upload Trivy scan results to GitHub Security tab
         if: always()
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'
diff --git a/.github/workflows/merge-to-release-branch.yaml b/.github/workflows/merge-to-release-branch.yaml
index 205351988f..be4cd44c6d 100644
--- a/.github/workflows/merge-to-release-branch.yaml
+++ b/.github/workflows/merge-to-release-branch.yaml
@@ -93,6 +93,6 @@ jobs:
 
       - name: Upload Trivy scan results to GitHub Security tab
         if: always()
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'
diff --git a/.github/workflows/periodic-security-check.yaml b/.github/workflows/periodic-security-check.yaml
index de1b71f06c..3764f96974 100644
--- a/.github/workflows/periodic-security-check.yaml
+++ b/.github/workflows/periodic-security-check.yaml
@@ -27,7 +27,7 @@ jobs:
 
       - name: Upload Trivy scan results to GitHub Security tab
         if: always()
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'
 
@@ -44,6 +44,6 @@ jobs:
           args: '-no-fail -fmt sarif -out gosec.sarif ./...'
 
       - name: Upload gosec scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'gosec.sarif'
diff --git a/.github/workflows/pr-checks.yaml b/.github/workflows/pr-checks.yaml
index 330c04363e..94a68e83a5 100644
--- a/.github/workflows/pr-checks.yaml
+++ b/.github/workflows/pr-checks.yaml
@@ -628,7 +628,7 @@ jobs:
 
       - name: Upload Trivy scan results to GitHub Security tab
         if: always()
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'
 
@@ -645,6 +645,6 @@ jobs:
           args: '-no-fail -fmt sarif -out gosec.sarif ./...'
 
       - name: Upload gosec scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'gosec.sarif'