diff --git a/.github/workflows/python.yaml b/.github/workflows/python.yaml
index 62de6f9..618b5dd 100644
--- a/.github/workflows/python.yaml
+++ b/.github/workflows/python.yaml
@@ -241,7 +241,7 @@ jobs:
           fi
       # this comes as last or scan results won't be uploaded
       - name: Run Trivy vulnerability scanner (security treshold)
-        uses: aquasecurity/trivy-action@0.33.1
+        uses: aquasecurity/trivy-action@0.34.0
         with:
           scan-type: fs
           scan-ref: .
diff --git a/RELEASE_NOTES.md b/RELEASE_NOTES.md
index bb8fd93..31cc1b4 100644
--- a/RELEASE_NOTES.md
+++ b/RELEASE_NOTES.md
@@ -87,6 +87,8 @@
 ### Dependencies
 
 - Bump actions/cache from 4 to 5 (PR #248 by @dependabot[bot])
+- Bump aquasecurity/trivy-action from 0.33.1 to 0.34.0 (PR #247 by
+  @dependabot[bot])
 - Bump reproducible-containers/buildkit-cache-dance from 3.3.0 to 3.3.1 (PR #244
   by @dependabot[bot])
 - Bump WyriHaximus/github-action-get-previous-tag from 1 to 2 (PR #245 by