diff --git a/.github/workflows/new-issue.yml b/.github/workflows/new-issue.yml
index 5c3e3786..12e3f912 100644
--- a/.github/workflows/new-issue.yml
+++ b/.github/workflows/new-issue.yml
@@ -26,7 +26,7 @@ jobs:
           label-id: "LA_kwDOHodxeM8AAAABA8dlvA"
           token: ${{ secrets.GITHUB_TOKEN }}
       - name: Issue comment tag
-        uses: devops-actions/issue-comment-tag@ec5e2b8d5f031330ff19bf4ee5b5252b1176995a # v0.1.8
+        uses: devops-actions/issue-comment-tag@6dbf2b1d509b1255e744349f7b0d5c1f723b22ef # v0.1.9
         with:
           # The tag of the team to mention in the issue comment
           team: V0ldek
diff --git a/.github/workflows/rust.yml b/.github/workflows/rust.yml
index 087f8976..7698d392 100644
--- a/.github/workflows/rust.yml
+++ b/.github/workflows/rust.yml
@@ -346,7 +346,7 @@ jobs:
         with:
           egress-policy: audit
       - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
-      - uses: EmbarkStudios/cargo-deny-action@76cd80eb775d7bbbd2d80292136d74d39e1b4918 # v2.0.14
+      - uses: EmbarkStudios/cargo-deny-action@3fd3802e88374d3fe9159b834c7714ec57d6c979 # v2.0.15
 
   cargo-msrv:
     name: Verify MSRV (cargo-msrv)
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index fbf1857b..3fe623af 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -71,6 +71,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@1b168cd39490f61582a9beae412bb7057a6b2c4e # v4.31.8
+        uses: github/codeql-action/upload-sarif@cdefb33c0f6224e58673d9004f47f7cb3e328b89 # v4.31.10
         with:
           sarif_file: results.sarif