diff --git a/.github/workflows/build-push-chart.yml b/.github/workflows/build-push-chart.yml
index 0a5f2b9..65f45a7 100644
--- a/.github/workflows/build-push-chart.yml
+++ b/.github/workflows/build-push-chart.yml
@@ -17,7 +17,7 @@ permissions: read-all
 
 jobs:
   setenv:
-    uses: ortelius/workflow-toolkit/.github/workflows/env-config-workflow.yml@037a22b92fc8a18174e3bddecbc529f49baec75a
+    uses: ortelius/workflow-toolkit/.github/workflows/env-config-workflow.yml@b6e8951b81386da8585684ad4b4c8c2db83cc5de
     with:
       gh_head_ref: ${{ github.head_ref }}
       gh_ref_name: ${{ github.ref_name }}
@@ -27,7 +27,7 @@ jobs:
       gh_run_number: ${{ github.run_number }}
 
   release:
-    uses: ortelius/workflow-toolkit/.github/workflows/container-release-workflow.yml@037a22b92fc8a18174e3bddecbc529f49baec75a
+    uses: ortelius/workflow-toolkit/.github/workflows/container-release-workflow.yml@b6e8951b81386da8585684ad4b4c8c2db83cc5de
     needs: setenv
     with:
       gh_repository_owner: ${{ github.repository_owner }}
@@ -43,7 +43,7 @@ jobs:
     permissions:
       security-events: write
       statuses: write
-    uses: ortelius/workflow-toolkit/.github/workflows/trivy-scan-workflow.yml@037a22b92fc8a18174e3bddecbc529f49baec75a
+    uses: ortelius/workflow-toolkit/.github/workflows/trivy-scan-workflow.yml@b6e8951b81386da8585684ad4b4c8c2db83cc5de
     needs: [setenv, release]
     with:
       gh_repository_owner: ${{ github.repository_owner }}
@@ -54,7 +54,7 @@ jobs:
   helm:
     permissions:
       contents: write
-    uses: ortelius/workflow-toolkit/.github/workflows/helm-release-workflow.yml@037a22b92fc8a18174e3bddecbc529f49baec75a
+    uses: ortelius/workflow-toolkit/.github/workflows/helm-release-workflow.yml@b6e8951b81386da8585684ad4b4c8c2db83cc5de
     needs: [setenv, release]
     with:
       gh_repository_owner: ${{ github.repository_owner }}
@@ -73,7 +73,7 @@ jobs:
       gh_token: ${{ secrets.HELM_INDEXER_TOKEN }}
 
   sbom:
-    uses: ortelius/workflow-toolkit/.github/workflows/sbom-generation-workflow.yml@037a22b92fc8a18174e3bddecbc529f49baec75a
+    uses: ortelius/workflow-toolkit/.github/workflows/sbom-generation-workflow.yml@b6e8951b81386da8585684ad4b4c8c2db83cc5de
     needs: [setenv, release]
     with:
       gh_repository_owner: ${{ github.repository_owner }}
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 66ca7fc..56db0c1 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -26,14 +26,14 @@ jobs:
           egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
 
       - name: Checkout repository
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@00e563ead9f72a8461b24876bee2d0c2e8bd2ee8 # v2.21.5
+        uses: github/codeql-action/init@ddccb873888234080b77e9bc2d4764d5ccaaccf9 # v2.21.9
         with:
           languages: "go"
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@00e563ead9f72a8461b24876bee2d0c2e8bd2ee8 # v2.21.5
+        uses: github/codeql-action/analyze@ddccb873888234080b77e9bc2d4764d5ccaaccf9 # v2.21.9
         with:
           category: "/language:go"
diff --git a/.github/workflows/mega-linter.yml b/.github/workflows/mega-linter.yml
index 3b3fd85..9a2ca3f 100644
--- a/.github/workflows/mega-linter.yml
+++ b/.github/workflows/mega-linter.yml
@@ -25,7 +25,7 @@ jobs:
     steps:
       # Git Checkout
       - name: Checkout Code
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4
         with:
           token: ${{ secrets.PAT || secrets.GITHUB_TOKEN }}
           fetch-depth: 0 # If you use VALIDATE_ALL_CODEBASE = true, you can remove this line to improve performances
@@ -46,7 +46,7 @@ jobs:
       # Upload MegaLinter artifacts
       - name: Archive production artifacts
         if: ${{ success() || failure() }}
-        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3
+        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3
         with:
           name: MegaLinter reports
           path: |
diff --git a/Dockerfile b/Dockerfile
index 3455655..77555db 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,4 +1,4 @@
-FROM cgr.dev/chainguard/go@sha256:df8e73f458a003f2b4a924bc9881930163b49c621cb58f113fce782387dff3c3 AS builder
+FROM cgr.dev/chainguard/go@sha256:04a66f5657362e4aee7c0b7e64f0bc4e31b9a898bfac21888c8905b97991a517 AS builder
 
 WORKDIR /app
 COPY . /app
@@ -8,7 +8,7 @@ RUN go install github.com/swaggo/swag/cmd/swag@latest; \
     go mod tidy; \
     go build -o main .
 
-FROM cgr.dev/chainguard/glibc-dynamic@sha256:b6d081a888e083ae88541c6da0c6c08077bb6b60c04b21813e7eea92d900e4be
+FROM cgr.dev/chainguard/glibc-dynamic@sha256:167ce5402afdf63f4cd5f4e80fdfd19a8983cf4cc49ca126bed7aebd658527c4
 
 WORKDIR /app