diff --git a/.github/actions/bootstrap/action.yml b/.github/actions/bootstrap/action.yml
index 85b0b80e..3f2a57bc 100644
--- a/.github/actions/bootstrap/action.yml
+++ b/.github/actions/bootstrap/action.yml
@@ -28,4 +28,4 @@ runs:
     # See https://goreleaser.com/blog/supply-chain-security/
     - name: installs syft for generating the SBOM with goreleaser
       if: "${{ inputs.goreleaser == 'true' }}"
-      uses: anchore/sbom-action/download-syft@f325610c9f50a54015d37c8d16cb3b0e2c8f4de0 # v0.18.0
+      uses: anchore/sbom-action/download-syft@9f7302141466aa6482940f15371237e9d9f4c34a # v0.19.0
diff --git a/.github/workflows/docs-build.yml b/.github/workflows/docs-build.yml
index c25beeee..9b857fe3 100644
--- a/.github/workflows/docs-build.yml
+++ b/.github/workflows/docs-build.yml
@@ -9,7 +9,7 @@ on:
 
 jobs:
   docs-preview:
-    uses: elastic/docs-builder/.github/workflows/preview-build.yml@0f7705950703dc3abe4eff4f1a08714d479bf393 # main
+    uses: elastic/docs-builder/.github/workflows/preview-build.yml@995e6f7ad5b0b8fd1f6a0b4a4bbc2987d24fa846 # main
     with:
       path-pattern: docs/**
     permissions:
diff --git a/.github/workflows/docs-cleanup.yml b/.github/workflows/docs-cleanup.yml
index 11c92360..8028ac69 100644
--- a/.github/workflows/docs-cleanup.yml
+++ b/.github/workflows/docs-cleanup.yml
@@ -7,7 +7,7 @@ on:
 
 jobs:
   docs-preview:
-    uses: elastic/docs-builder/.github/workflows/preview-cleanup.yml@0f7705950703dc3abe4eff4f1a08714d479bf393 # main
+    uses: elastic/docs-builder/.github/workflows/preview-cleanup.yml@995e6f7ad5b0b8fd1f6a0b4a4bbc2987d24fa846 # main
     permissions:
       contents: none
       id-token: write