diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index dd78f548..96a5e4ca 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -101,7 +101,7 @@ jobs:
             ${{ steps.meta.outputs.labels }}
 
       - name: Sign api image and attach SBOM attestation
-        uses: adfinis/container-scanning-action@v0.2.6
+        uses: adfinis/container-scanning-action@v0.2.9
         with:
           image-ref: ghcr.io/${{ github.repository }}/api
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -173,7 +173,7 @@ jobs:
             ${{ steps.meta.outputs.labels }}
 
       - name: Sign image and attach SBOM attestation
-        uses: adfinis/container-scanning-action@v0.2.6
+        uses: adfinis/container-scanning-action@v0.2.9
         with:
           image-ref: ghcr.io/${{ github.repository }}/ember
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/schedule.yaml b/.github/workflows/schedule.yaml
index 57d909ae..97fa16c1 100644
--- a/.github/workflows/schedule.yaml
+++ b/.github/workflows/schedule.yaml
@@ -24,7 +24,7 @@ jobs:
       # needed for `cosign attest`
       id-token: write
     steps:
-      - uses: adfinis/container-scanning-action@v0.2.6
+      - uses: adfinis/container-scanning-action@v0.2.9
         with:
           image-ref: ghcr.io/${{ github.repository }}/api
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -47,7 +47,7 @@ jobs:
       # needed for `cosign attest`
       id-token: write
     steps:
-      - uses: adfinis/container-scanning-action@v0.2.6
+      - uses: adfinis/container-scanning-action@v0.2.9
         with:
           image-ref: ghcr.io/${{ github.repository }}/ember
           token: ${{ secrets.GITHUB_TOKEN }}