diff --git a/.github/workflows/dependecy-review.yaml b/.github/workflows/dependecy-review.yaml
index 6865c510..ffd44a3a 100644
--- a/.github/workflows/dependecy-review.yaml
+++ b/.github/workflows/dependecy-review.yaml
@@ -11,7 +11,7 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@v4
       - name: 'Dependency Review'        
-        uses: actions/dependency-review-action@72eb03d02c7872a771aacd928f3123ac62ad6d3a # Version 4.3.3 # https://github.com/actions/dependency-review-action/releases/tag/v4.3.3
+        uses: actions/dependency-review-action@3b139cfc5fae8b618d3eae3675e383bb1769c019 # Version 4.3.3 # https://github.com/actions/dependency-review-action/releases/tag/v4.3.3
         # Version 4.3.4 does not work with invalid license names in the config and since that version,
         # SPDX expression licenses are considered invalid (see: https://github.com/actions/dependency-review-action/issues/792).
         # In short, remove all SPDX expressions from the config!