diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml
index b16fa201ab4..46b43217234 100644
--- a/.github/workflows/codeql.yaml
+++ b/.github/workflows/codeql.yaml
@@ -25,12 +25,12 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@0116bc2df50751f9724a2e35ef1f24d22f90e4e1
+        uses: github/codeql-action/init@49abf0ba24d0b7953cb586944e918a0b92074c80
         with:
           languages: go
 
       - name: Autobuild
-        uses: github/codeql-action/autobuild@0116bc2df50751f9724a2e35ef1f24d22f90e4e1
+        uses: github/codeql-action/autobuild@49abf0ba24d0b7953cb586944e918a0b92074c80
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@0116bc2df50751f9724a2e35ef1f24d22f90e4e1
+        uses: github/codeql-action/analyze@49abf0ba24d0b7953cb586944e918a0b92074c80
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 9c8b11ed5e1..2a04f21e9b1 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -71,6 +71,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@0116bc2df50751f9724a2e35ef1f24d22f90e4e1 # v2.22.3
+        uses: github/codeql-action/upload-sarif@49abf0ba24d0b7953cb586944e918a0b92074c80 # v2.22.4
         with:
           sarif_file: results.sarif