diff --git a/README.md b/README.md
index f184d30..240c4b6 100644
--- a/README.md
+++ b/README.md
@@ -166,7 +166,7 @@ Please refer to the [release page](https://github.com/actions/checkout/releases/
     # repository's GITHUB_TOKEN, secrets, default-branch cache scope, and runner
     # access; fetching and executing a fork's code in that trusted context commonly
     # leads to "pwn request" vulnerabilities. Set to `true` only after reviewing the
-    # risks at https://gh.io/securely-using-pull-request-checkout.
+    # risks at https://gh.io/securely-using-pull_request_target.
     # Default: false
     allow-unsafe-pr-checkout: ''
 ```
diff --git a/action.yml b/action.yml
index a7321f2..5b0524f 100644
--- a/action.yml
+++ b/action.yml
@@ -105,7 +105,7 @@ inputs:
       base repository's GITHUB_TOKEN, secrets, default-branch cache scope, and
       runner access; fetching and executing a fork's code in that trusted
       context commonly leads to "pwn request" vulnerabilities. Set to `true`
-      only after reviewing the risks at https://gh.io/securely-using-pull-request-checkout.
+      only after reviewing the risks at https://gh.io/securely-using-pull_request_target.
     default: false
 outputs:
   ref:
diff --git a/dist/index.js b/dist/index.js
index 97b462a..b0f11a1 100644
--- a/dist/index.js
+++ b/dist/index.js
@@ -2834,7 +2834,7 @@ function assertSafePrCheckout(input) {
         `This workflow runs with the base repository's GITHUB_TOKEN, secrets, default-branch ` +
         `cache scope, and runner access. Fetching and executing a fork's code in that trusted ` +
         `context commonly leads to "pwn request" vulnerabilities. To opt in after reviewing ` +
-        `the risks at https://gh.io/securely-using-pull-request-checkout, set ` +
+        `the risks at https://gh.io/securely-using-pull_request_target, set ` +
         `'allow-unsafe-pr-checkout: true' on the actions/checkout step.`);
 }
 function pushIfSha(target, value) {
diff --git a/src/unsafe-pr-checkout-helper.ts b/src/unsafe-pr-checkout-helper.ts
index f3ff242..efc0ef6 100644
--- a/src/unsafe-pr-checkout-helper.ts
+++ b/src/unsafe-pr-checkout-helper.ts
@@ -76,7 +76,7 @@ export function assertSafePrCheckout(input: IUnsafePrCheckoutInput): void {
       `This workflow runs with the base repository's GITHUB_TOKEN, secrets, default-branch ` +
       `cache scope, and runner access. Fetching and executing a fork's code in that trusted ` +
       `context commonly leads to "pwn request" vulnerabilities. To opt in after reviewing ` +
-      `the risks at https://gh.io/securely-using-pull-request-checkout, set ` +
+      `the risks at https://gh.io/securely-using-pull_request_target, set ` +
       `'allow-unsafe-pr-checkout: true' on the actions/checkout step.`
   )
 }