diff --git a/lib/config/options/index.ts b/lib/config/options/index.ts
index d2994100d0bf84..15ff1102da7109 100644
--- a/lib/config/options/index.ts
+++ b/lib/config/options/index.ts
@@ -2037,7 +2037,7 @@ const options: RenovateOptions[] = [
       minimumReleaseAge: null,
       rangeStrategy: 'update-lockfile',
       commitMessageSuffix: '[SECURITY]',
-      branchTopic: `{{{datasource}}}-{{{depName}}}-vulnerability`,
+      branchTopic: `{{{datasource}}}-{{{depNameSanitized}}}-vulnerability`,
       prCreation: 'immediate',
     },
     mergeable: true,
diff --git a/lib/workers/repository/init/__snapshots__/vulnerability.spec.ts.snap b/lib/workers/repository/init/__snapshots__/vulnerability.spec.ts.snap
index 3722c216ecee88..c7c5677fe7a5ef 100644
--- a/lib/workers/repository/init/__snapshots__/vulnerability.spec.ts.snap
+++ b/lib/workers/repository/init/__snapshots__/vulnerability.spec.ts.snap
@@ -5,7 +5,7 @@ exports[`workers/repository/init/vulnerability detectVulnerabilityAlerts() retur
   {
     "allowedVersions": "1.8.3",
     "force": {
-      "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
+      "branchTopic": "{{{datasource}}}-{{{depNameSanitized}}}-vulnerability",
       "commitMessageSuffix": "[SECURITY]",
       "dependencyDashboardApproval": false,
       "groupName": null,
@@ -40,7 +40,7 @@ exports[`workers/repository/init/vulnerability detectVulnerabilityAlerts() retur
   {
     "allowedVersions": "1.8.3",
     "force": {
-      "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
+      "branchTopic": "{{{datasource}}}-{{{depNameSanitized}}}-vulnerability",
       "commitMessageSuffix": "[SECURITY]",
       "dependencyDashboardApproval": false,
       "groupName": null,
@@ -75,7 +75,7 @@ exports[`workers/repository/init/vulnerability detectVulnerabilityAlerts() retur
   {
     "allowedVersions": "2.7.9.4",
     "force": {
-      "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
+      "branchTopic": "{{{datasource}}}-{{{depNameSanitized}}}-vulnerability",
       "commitMessageSuffix": "[SECURITY]",
       "dependencyDashboardApproval": false,
       "groupName": null,
@@ -110,7 +110,7 @@ exports[`workers/repository/init/vulnerability detectVulnerabilityAlerts() retur
   {
     "allowedVersions": "==2.2.1.0",
     "force": {
-      "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
+      "branchTopic": "{{{datasource}}}-{{{depNameSanitized}}}-vulnerability",
       "commitMessageSuffix": "[SECURITY]",
       "dependencyDashboardApproval": false,
       "groupName": null,