diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index 23ae923..b9a0f59 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -45,12 +45,12 @@ jobs:
           persist-credentials: false
 
       - name: 'Setup CodeQL'
-        uses: github/codeql-action/init@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10
+        uses: github/codeql-action/init@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6
         with:
           languages: ${{ matrix.language }}
 
       - name: 'Run analysis'
-        uses: github/codeql-action/analyze@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10
+        uses: github/codeql-action/analyze@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6
         with:
           category: '/language:${{ matrix.language }}'
 
@@ -80,6 +80,6 @@ jobs:
           publish_results: true
 
       - name: 'Upload to code-scanning'
-        uses: github/codeql-action/upload-sarif@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10
+        uses: github/codeql-action/upload-sarif@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6
         with:
           sarif_file: scoreboard.sarif
\ No newline at end of file