diff --git a/.github/workflows/gradle-library.yml b/.github/workflows/gradle-library.yml
index eead2f9..e962951 100644
--- a/.github/workflows/gradle-library.yml
+++ b/.github/workflows/gradle-library.yml
@@ -135,7 +135,7 @@ jobs:
           java-version: ${{ inputs.java-version }}
 
       - name: Setup Gradle
-        uses: gradle/actions/setup-gradle@d156388eb19639ec20ade50009f3d199ce1e2808 # v4.1.0
+        uses: gradle/actions/setup-gradle@473878a77f1b98e2b5ac4af93489d1656a80a5ed # v4.2.0
 
       - name: Write dependency lockfile for security scan
         if: ${{ !inputs.skip-scan }}
diff --git a/.github/workflows/gradle-service.yml b/.github/workflows/gradle-service.yml
index 6d78ee4..ba5a3bd 100644
--- a/.github/workflows/gradle-service.yml
+++ b/.github/workflows/gradle-service.yml
@@ -151,7 +151,7 @@ jobs:
           java-version: ${{ inputs.java-version }}
 
       - name: Setup Gradle
-        uses: gradle/actions/setup-gradle@d156388eb19639ec20ade50009f3d199ce1e2808 # v4.1.0
+        uses: gradle/actions/setup-gradle@473878a77f1b98e2b5ac4af93489d1656a80a5ed # v4.2.0
 
       - name: Build and test with Gradle
         if: ${{ !inputs.skip-build }}
diff --git a/.github/workflows/scan-images.yml b/.github/workflows/scan-images.yml
index a25c87d..1f61fe4 100644
--- a/.github/workflows/scan-images.yml
+++ b/.github/workflows/scan-images.yml
@@ -124,7 +124,7 @@ jobs:
 
       - name: Install CycloneDX CLI # https://github.com/CycloneDX/cyclonedx-cli
         if: ${{ inputs.merge-sboms }}
-        uses: jaxxstorm/action-install-gh-release@25d5e2dd555cd74f1fab9ac1e6ea117acde2c0c4 # v1.12.0
+        uses: jaxxstorm/action-install-gh-release@7f2440a9a41f74262d8f6433da138c799799a969 # v1.13.0
         with:
           repo: CycloneDX/cyclonedx-cli
           tag: v0.25.1 # optional, otherwise use latest