diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml
index a623a76..436bcd5 100644
--- a/.github/workflows/gitleaks.yml
+++ b/.github/workflows/gitleaks.yml
@@ -50,7 +50,7 @@ jobs:
 
             - name: Upload results to GitHub Security
               if: always()
-              uses: github/codeql-action/upload-sarif@fe4161a26a8629af62121b670040955b330f9af2 # v4
+              uses: github/codeql-action/upload-sarif@1b168cd39490f61582a9beae412bb7057a6b2c4e # v4
               with:
                   sarif_file: results.sarif
 
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index 67ad5f3..a8ed693 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -39,7 +39,7 @@ jobs:
                   repo_token: ${{ secrets.GITHUB_TOKEN }}
 
             - name: Upload results to GitHub Security
-              uses: github/codeql-action/upload-sarif@fe4161a26a8629af62121b670040955b330f9af2 # v4
+              uses: github/codeql-action/upload-sarif@1b168cd39490f61582a9beae412bb7057a6b2c4e # v4
               with:
                   sarif_file: results.sarif