diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index ee069d1..1a0b4fe 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -28,10 +28,10 @@ jobs:
       - name: "Checkout"
         uses: "actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29"
       - name: "Initialize CodeQL"
-        uses: "github/codeql-action/init@cdcdbb579706841c47f7063dda365e292e5cad7a"
+        uses: "github/codeql-action/init@b7cec7526559c32f1616476ff32d17ba4c59b2d6"
         with:
           languages: "${{ matrix.language }}"
       - name: "Autobuild"
-        uses: "github/codeql-action/autobuild@cdcdbb579706841c47f7063dda365e292e5cad7a"
+        uses: "github/codeql-action/autobuild@b7cec7526559c32f1616476ff32d17ba4c59b2d6"
       - name: "Perform CodeQL Analysis"
-        uses: "github/codeql-action/analyze@cdcdbb579706841c47f7063dda365e292e5cad7a"
+        uses: "github/codeql-action/analyze@b7cec7526559c32f1616476ff32d17ba4c59b2d6"
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index 14291ff..caf5bb2 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -28,6 +28,6 @@ jobs:
           repo_token: "${{ secrets.GITHUB_TOKEN }}"
           publish_results: false
       - name: "Upload SARIF file"
-        uses: "github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a"
+        uses: "github/codeql-action/upload-sarif@b7cec7526559c32f1616476ff32d17ba4c59b2d6"
         with:
           sarif_file: "./results.sarif"