diff --git a/.github/workflows/central-publish-template.yml b/.github/workflows/central-publish-template.yml
index 74da38cb..94af261d 100644
--- a/.github/workflows/central-publish-template.yml
+++ b/.github/workflows/central-publish-template.yml
@@ -43,7 +43,7 @@ jobs:
         run: mkdir -p ballerina/lib
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@v0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina/lib"
diff --git a/.github/workflows/release-package-connector-template.yml b/.github/workflows/release-package-connector-template.yml
index 8cb8b8eb..15df51ba 100644
--- a/.github/workflows/release-package-connector-template.yml
+++ b/.github/workflows/release-package-connector-template.yml
@@ -68,7 +68,7 @@ jobs:
         run: mkdir -p ballerina/lib
 
       - name: Run Trivy Vulnerability Scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@v0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina/lib"
diff --git a/.github/workflows/release-package-template.yml b/.github/workflows/release-package-template.yml
index 0687fd5d..a2da9a2c 100644
--- a/.github/workflows/release-package-template.yml
+++ b/.github/workflows/release-package-template.yml
@@ -50,7 +50,7 @@ jobs:
         run: mkdir -p ballerina/lib
 
       - name: Run Trivy Vulnerability Scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@v0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina/lib"
diff --git a/.github/workflows/s4hana-release-template.yml b/.github/workflows/s4hana-release-template.yml
index e4f97f1a..b2bd8801 100644
--- a/.github/workflows/s4hana-release-template.yml
+++ b/.github/workflows/s4hana-release-template.yml
@@ -60,7 +60,7 @@ jobs:
           ./gradlew build -x test 
 
       - name: Run Trivy Vulnerability Scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@v0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina"
diff --git a/.github/workflows/s4hana-trivy-scan.yml b/.github/workflows/s4hana-trivy-scan.yml
index ff1cf377..be70ac85 100644
--- a/.github/workflows/s4hana-trivy-scan.yml
+++ b/.github/workflows/s4hana-trivy-scan.yml
@@ -26,7 +26,7 @@ jobs:
         run: ./gradlew build -x test -x :${{ inputs.hana-connector-group }}-examples:build -x:${{ inputs.hana-connector-group }}-sanitation:build
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@v0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina"
diff --git a/.github/workflows/trivy-scan-template.yml b/.github/workflows/trivy-scan-template.yml
index 8b4ba3ef..e881c8d6 100644
--- a/.github/workflows/trivy-scan-template.yml
+++ b/.github/workflows/trivy-scan-template.yml
@@ -31,7 +31,7 @@ jobs:
         run: mkdir -p ballerina/lib
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@master
+        uses: aquasecurity/trivy-action@v0.23.0
         with:
           scan-type: "rootfs"
           scan-ref: "/github/workspace/ballerina/lib"