diff --git a/.github/workflows/docker_dockerhub_release_callable.yml b/.github/workflows/docker_dockerhub_release_callable.yml
index de1eb61..8b286a2 100644
--- a/.github/workflows/docker_dockerhub_release_callable.yml
+++ b/.github/workflows/docker_dockerhub_release_callable.yml
@@ -74,7 +74,7 @@ jobs:
           format: "sarif"
           output: "trivy-results.sarif"
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@f079b8493333aace61c81488f8bd40919487bd9f # v3.25.7
+        uses: github/codeql-action/upload-sarif@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # v3.25.8
         if: ${{ inputs.upload-security-scan-results }}
         with:
           sarif_file: "trivy-results.sarif"
diff --git a/.github/workflows/terraform_module_terraform_tfsec_callable.yml b/.github/workflows/terraform_module_terraform_tfsec_callable.yml
index d8178f6..69aa09a 100644
--- a/.github/workflows/terraform_module_terraform_tfsec_callable.yml
+++ b/.github/workflows/terraform_module_terraform_tfsec_callable.yml
@@ -32,7 +32,7 @@ jobs:
           sarif_file: tfsec.sarif
 
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@f079b8493333aace61c81488f8bd40919487bd9f # v3.25.7
+        uses: github/codeql-action/upload-sarif@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # v3.25.8
         with:
           # Path to SARIF file relative to the root of the repository
           sarif_file: tfsec.sarif