diff --git a/.github/workflows/zap-scan.yml b/.github/workflows/zap-scan.yml
index d462b29..74dd562 100644
--- a/.github/workflows/zap-scan.yml
+++ b/.github/workflows/zap-scan.yml
@@ -55,7 +55,7 @@ jobs:
           curl --insecure -v '${{ inputs.url }}'
 
       - name: ZAP Scan
-        uses: zaproxy/action-full-scan@6eade0f93b10fad8cfb4e63b979703a2cbd0cc98 # v0.4.0
+        uses: zaproxy/action-full-scan@bdd21ad4090d552d299261226c553efbc216f5ee # v0.9.0
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
           docker_name: 'owasp/zap2docker-stable'