diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index c334720bc..ec397ef9c 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -50,10 +50,10 @@ jobs:
           echo "qbittorrent-password=${{ env.QBITTORRENTAPI_PASSWORD }}" | tee -a ${GITHUB_OUTPUT}
 
       - name: Checkout Repo
-        uses: actions/checkout@v4.2.0
+        uses: actions/checkout@v4.2.2
 
       - name: Set up Python ${{ env.LATEST_PYTHON_VER }}
-        uses: actions/setup-python@v5.2.0
+        uses: actions/setup-python@v5.3.0
         with:
           python-version: ${{ env.LATEST_PYTHON_VER }}
           allow-prereleases: true
@@ -79,12 +79,12 @@ jobs:
       attestations: write
     steps:
       - name: Checkout Repo
-        uses: actions/checkout@v4.2.0
+        uses: actions/checkout@v4.2.2
         with:
           fetch-depth: 0  # Fetch all refs so setuptools_scm can generate the correct version number
 
       - name: Build & Upload Package
-        uses: hynek/build-and-inspect-python-package@v2.9.0
+        uses: hynek/build-and-inspect-python-package@v2.10.0
         with:
           attest-build-provenance-github: ${{ inputs.attest }}
 
@@ -147,12 +147,12 @@ jobs:
     runs-on: ubuntu-latest
     needs: [ Tests-qBittorrent, Tests-Python ]
     steps:
-      - uses: actions/checkout@v4.2.0
+      - uses: actions/checkout@v4.2.2
         with:
           fetch-depth: 0
 
       - name: Setup Python
-        uses: actions/setup-python@v5.2.0
+        uses: actions/setup-python@v5.3.0
         with:
           python-version: 3.x
 
@@ -178,14 +178,14 @@ jobs:
 
       - name: Upload HTML coverage report
         if: always() && steps.coverage.outcome == 'failure'
-        uses: actions/upload-artifact@v4.4.0
+        uses: actions/upload-artifact@v4.4.3
         with:
           name: html-coverage-report
           path: ./htmlcov
 
       - name: Upload Coverage to Codecov
         if: contains(fromJson('["push", "pull_request"]'), github.event_name)
-        uses: codecov/codecov-action@v4.5.0
+        uses: codecov/codecov-action@v4.6.0
         with:
           fail_ci_if_error: true
           token: ${{ secrets.CODECOV_TOKEN }}
@@ -202,10 +202,10 @@ jobs:
         os: [ ubuntu-latest, windows-latest, macos-latest ]
     steps:
       - name: Checkout Repo
-        uses: actions/checkout@v4.2.0
+        uses: actions/checkout@v4.2.2
 
       - name: Set up Python ${{ env.LATEST_PYTHON_VER }}
-        uses: actions/setup-python@v5.2.0
+        uses: actions/setup-python@v5.3.0
         with:
           python-version: ${{ env.LATEST_PYTHON_VER }}
           allow-prereleases: true
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 811a17778..e5c64ae99 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -21,17 +21,17 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4.2.0
+        uses: actions/checkout@v4.2.2
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3.26.10
+        uses: github/codeql-action/init@v3.27.0
         with:
           languages: python
 
       - name: Autobuild
-        uses: github/codeql-action/autobuild@v3.26.10
+        uses: github/codeql-action/autobuild@v3.27.0
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v3.26.10
+        uses: github/codeql-action/analyze@v3.27.0
         with:
           category: /language:python
diff --git a/.github/workflows/pre-commit-update.yml b/.github/workflows/pre-commit-update.yml
index e2c38dca3..11abd13ee 100644
--- a/.github/workflows/pre-commit-update.yml
+++ b/.github/workflows/pre-commit-update.yml
@@ -30,7 +30,7 @@ jobs:
       hook-repos: ${{ steps.hooks.outputs.repos }}
     steps:
       - name: Checkout Repo
-        uses: actions/checkout@v4.2.0
+        uses: actions/checkout@v4.2.2
 
       - name: Get Pre-commit Hooks
         id: hooks
@@ -50,7 +50,7 @@ jobs:
         hook-repo: ${{ fromJson(needs.pre-commit-hooks.outputs.hook-repos) }}
     steps:
       - name: Checkout
-        uses: actions/checkout@v4.2.0
+        uses: actions/checkout@v4.2.2
         with:
           fetch-depth: 1
           token: ${{ secrets.PAT }}
@@ -61,7 +61,7 @@ jobs:
           git config user.name "pre-commit updates"
 
       - name: Set up Python
-        uses: actions/setup-python@v5.2.0
+        uses: actions/setup-python@v5.3.0
         with:
           python-version: 3.X
 
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 0f79ff0ca..3f13922e3 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -27,7 +27,7 @@ jobs:
         run: echo "version=${GITHUB_REF_NAME#v}" >> ${GITHUB_OUTPUT}
 
       - name: Set up Python
-        uses: actions/setup-python@v5.2.0
+        uses: actions/setup-python@v5.3.0
         with:
           python-version: 3.x
 
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index d889d14fc..dd0a0247e 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -44,7 +44,7 @@ jobs:
 
     steps:
       - name: Checkout Repo
-        uses: actions/checkout@v4.2.0
+        uses: actions/checkout@v4.2.2
 
       - name: Get packages
         uses: actions/download-artifact@v4.1.8
@@ -53,7 +53,7 @@ jobs:
           path: ./dist
 
       - name: Set up Python ${{ inputs.python-version }}
-        uses: actions/setup-python@v5.2.0
+        uses: actions/setup-python@v5.3.0
         with:
           python-version: ${{ inputs.python-version }}
           allow-prereleases: true
@@ -83,7 +83,7 @@ jobs:
 
       - name: Store coverage data
         if: success() || failure()
-        uses: actions/upload-artifact@v4.4.0
+        uses: actions/upload-artifact@v4.4.3
         with:
           name: coverage-data-${{ inputs.python-version }}-${{ inputs.qbittorrent-version }}
           path: ./.coverage.*