diff --git a/analyze/action.yml b/analyze/action.yml
index e185d54..426bd06 100644
--- a/analyze/action.yml
+++ b/analyze/action.yml
@@ -53,7 +53,7 @@ runs:
         cat codeql-config.yml
 
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@b8bb9f28b8d3f992092362369c57161b755dea45 # v4.35.0
+      uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
       with:
         config-file: 'codeql-config.yml'
         languages: ${{ inputs.language }}
@@ -75,6 +75,6 @@ runs:
       working-directory: ${{ inputs.working-directory }}
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@b8bb9f28b8d3f992092362369c57161b755dea45 # v4.35.0
+      uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
       with:
         upload: ${{ inputs.upload-results == 'true' && 'always' || 'never' }}
diff --git a/build/action.yml b/build/action.yml
index 964ff22..826a6f7 100644
--- a/build/action.yml
+++ b/build/action.yml
@@ -242,7 +242,7 @@ runs:
 
     - name: Upload Trivy scan results to GitHub Advanced Security
       if: ${{ inputs.trivy-upload-report == 'true' && !cancelled() }}
-      uses: github/codeql-action/upload-sarif@b8bb9f28b8d3f992092362369c57161b755dea45 # v4.35.0
+      uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
       with:
         sarif_file: 'trivy.sarif'
         category: 'Trivy'
diff --git a/trivy-iac-scan/action.yml b/trivy-iac-scan/action.yml
index 39d2f5d..9820ad1 100644
--- a/trivy-iac-scan/action.yml
+++ b/trivy-iac-scan/action.yml
@@ -89,7 +89,7 @@ runs:
 
     - name: Upload Trivy report to GitHub Security tab
       if: ${{ inputs.upload-report == 'true' }}
-      uses: github/codeql-action/upload-sarif@b8bb9f28b8d3f992092362369c57161b755dea45 # v4.35.0
+      uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
       with:
         sarif_file: trivy2.sarif
         category: 'Trivy'