diff --git a/.github/actions/sbom-generator/action.yml b/.github/actions/sbom-generator/action.yml
index 0af8c2c47..7573150b5 100644
--- a/.github/actions/sbom-generator/action.yml
+++ b/.github/actions/sbom-generator/action.yml
@@ -35,7 +35,7 @@ runs:
         gh release upload ${{ inputs.release-tag }} ./artifacts/sboms/${{ inputs.project-name }}.bom.json
 
     - name: Attest package
-      uses: actions/attest-sbom@115c3be05ff3974bcbd596578934b3f9ce39bf68 # v2.2.0
+      uses: actions/attest-sbom@bd218ad0dbcb3e146bd073d1d9c6d78e08aa8a0b # v2.4.0
       with:
         subject-path: src/**/${{ inputs.project-name }}.*.nupkg
         sbom-path: ./artifacts/sboms/${{ inputs.project-name }}.bom.json