diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index fe52e6e3..08ccb0b4 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -222,13 +222,30 @@ jobs:
     - run: golangci-lint run
 
   semgrep:
+    # User definable name of this GitHub Actions job.
+    name: semgrep/ci 
+    # If you are self-hosting, change the following `runs-on` value: 
     runs-on: ubuntu-latest
+
+    container:
+      # A Docker image with Semgrep installed. Do not change this.
+      image: returntocorp/semgrep
+
+    # Skip any PR created by dependabot to avoid permission issues:
+    if: (github.actor != 'dependabot[bot]')
+
     steps:
-    - uses: actions/checkout@v3
-      with:
-       fetch-depth: 0
-    - name: semgrep
-      uses: returntocorp/semgrep-action@v1
+      # Fetch project source with GitHub Actions Checkout.
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
+      # Run the "semgrep ci" command on the command line of the docker image.
+      - run: semgrep ci
+        #env:
+          # Connect to Semgrep Cloud Platform through your SEMGREP_APP_TOKEN.
+          # Generate a token from Semgrep Cloud Platform > Settings
+          # and add it to your GitHub secrets.
+          #SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
 
   goreleaser:
     needs: [go_mod_download]