diff --git a/.github/workflows/security-codeql.yml b/.github/workflows/security-codeql.yml
index d20f68fc..72689e30 100644
--- a/.github/workflows/security-codeql.yml
+++ b/.github/workflows/security-codeql.yml
@@ -39,7 +39,7 @@ jobs:
           xcode-select-version: '26.0'
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
+        uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
         with:
           languages: ${{ matrix.language }}
           build-mode: ${{ matrix.build-mode }}
@@ -55,6 +55,6 @@ jobs:
             -destination "platform=iOS Simulator,name=iPhone 17"
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
+        uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
         with:
           category: "/language:${{matrix.language}}"
diff --git a/.github/workflows/security-fluidattacks.yml b/.github/workflows/security-fluidattacks.yml
index 24b02b55..8d8b38a2 100644
--- a/.github/workflows/security-fluidattacks.yml
+++ b/.github/workflows/security-fluidattacks.yml
@@ -36,13 +36,13 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload SAST results to code-scanning"
-        uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
+        uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
         with:
           sarif_file: fluidscan-sast-results.sarif
           category: fluidattacks-sast
 
       - name: "Upload SCA results to code-scanning"
-        uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
+        uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
         with:
           sarif_file: fluidscan-sca-results.sarif
           category: fluidattacks-sca
diff --git a/.github/workflows/security-scorecard.yml b/.github/workflows/security-scorecard.yml
index 3af37d14..2eb9f216 100644
--- a/.github/workflows/security-scorecard.yml
+++ b/.github/workflows/security-scorecard.yml
@@ -58,6 +58,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
+        uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
         with:
           sarif_file: results.sarif
\ No newline at end of file