diff --git a/.github/workflows/security-audit.yml b/.github/workflows/security-audit.yml
index 145650c..d7428fd 100644
--- a/.github/workflows/security-audit.yml
+++ b/.github/workflows/security-audit.yml
@@ -56,6 +56,6 @@ jobs:
         # Restricting to licenses + bans avoids breakage when the advisory DB
         # introduces new TOML features unsupported by this pinned cargo-deny
         # version (e.g. RUSTSEC-2026-0076 parse error with cargo-deny 0.14.x).
-        uses: EmbarkStudios/cargo-deny-action@v1
+        uses: EmbarkStudios/cargo-deny-action@v2
         with:
           command: check licenses bans