diff --git a/.github/workflows/anchore-analysis.yml b/.github/workflows/anchore-analysis.yml
index 9c3cc8da..1345adbc 100644
--- a/.github/workflows/anchore-analysis.yml
+++ b/.github/workflows/anchore-analysis.yml
@@ -15,7 +15,7 @@ jobs:
     - name: Build the Docker image
       run: docker build . --file Dockerfile --tag banzaicloud/thanos-operator:latest
     - name: Run the Anchore scan action itself with GitHub Advanced Security code scanning integration enabled
-      uses: anchore/scan-action@main
+      uses: anchore/scan-action@v3
       with:
         image: "banzaicloud/thanos-operator:latest"
         acs-report-enable: true
diff --git a/.grype.yaml b/.grype.yaml
new file mode 100644
index 00000000..aad98b3e
--- /dev/null
+++ b/.grype.yaml
@@ -0,0 +1,13 @@
+ignore:
+  - vulnerability: CVE-2021-22570
+    fix-state: unknown
+    package:
+      name: google.golang.org/protobuf
+      version: v1.26.0
+      type: go-module
+  - vulnerability: CVE-2015-5237
+    fix-state: unknown
+    package:
+      name: google.golang.org/protobuf
+      version: v1.26.0
+      type: go-module
diff --git a/Dockerfile b/Dockerfile
index bded79fc..83671317 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,5 +1,5 @@
 # Build the manager binary
-FROM golang:1.17 as builder
+FROM golang:1.17.6 as builder
 
 WORKDIR /workspace
 # Copy the Go Modules manifests
diff --git a/charts/thanos-operator/Chart.yaml b/charts/thanos-operator/Chart.yaml
index 09423f2d..c536d27e 100644
--- a/charts/thanos-operator/Chart.yaml
+++ b/charts/thanos-operator/Chart.yaml
@@ -14,8 +14,8 @@ type: application
 
 # This is the chart version. This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
-version: 0.3.3
+version: 0.3.7
 
 # This is the version number of the application being deployed. This version number should be
 # incremented each time you make changes to the application.
-appVersion: 0.3.3
+appVersion: 0.3.7
diff --git a/pkg/sdk/resourcebuilder/component.go b/pkg/sdk/resourcebuilder/component.go
index 8e06b150..e981b45c 100644
--- a/pkg/sdk/resourcebuilder/component.go
+++ b/pkg/sdk/resourcebuilder/component.go
@@ -37,7 +37,7 @@ import (
 )
 
 const (
-	Image            = "ghcr.io/banzaicloud/thanos-operator:0.3.4"
+	Image            = "ghcr.io/banzaicloud/thanos-operator:0.3.7"
 	defaultNamespace = "thanos-system"
 )