diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
index 373dec852..29c77da58 100644
--- a/.github/workflows/security-scan.yml
+++ b/.github/workflows/security-scan.yml
@@ -62,7 +62,7 @@ jobs:
       - name: Checkout Source
         uses: actions/checkout@v2
       - name: Run Gosec Security Scanner
-        uses: dimasalakhov/gosec@test-container
+        uses: portainer/gosec@fix-sarif-format
         with:
           # we let the report trigger content trigger a failure using the GitHub Security features.
           args: "-no-fail -fmt sarif -out results.sarif ./..."