diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 197ac4f..b194dbe 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -35,12 +35,12 @@ jobs:
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@f8e782af5670be7b12c0acb5b25c1c5703b931b9
+        uses: github/codeql-action/init@3d3d628990a5f99229dd9fa1821cc5a4f31b613b
         with:
           languages: go
 
       - name: Autobuild
-        uses: github/codeql-action/autobuild@f8e782af5670be7b12c0acb5b25c1c5703b931b9
+        uses: github/codeql-action/autobuild@3d3d628990a5f99229dd9fa1821cc5a4f31b613b
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@f8e782af5670be7b12c0acb5b25c1c5703b931b9
+        uses: github/codeql-action/analyze@3d3d628990a5f99229dd9fa1821cc5a4f31b613b
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index c63aed4..d80c4e9 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -69,6 +69,6 @@ jobs:
 
       # required for Code scanning alerts
       - name: "Upload SARIF results to code scanning"
-        uses: github/codeql-action/upload-sarif@f8e782af5670be7b12c0acb5b25c1c5703b931b9
+        uses: github/codeql-action/upload-sarif@3d3d628990a5f99229dd9fa1821cc5a4f31b613b
         with:
           sarif_file: results.sarif