diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 8a0aab1..3b392ac 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -40,7 +40,7 @@ jobs:
         run: conan install . --output-folder=build/ci --build=missing --lockfile=conan.lock -s build_type=Release
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@7211b7c8077ea37d8641b6271f6a365a22a5fbfa  # v4
+        uses: github/codeql-action/init@87557b9c84dde89fdd9b10e88954ac2f4248e463  # v4
         with:
           languages: cpp
           queries: security-extended,security-and-quality
@@ -51,13 +51,13 @@ jobs:
           cmake --build --preset ci
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@7211b7c8077ea37d8641b6271f6a365a22a5fbfa  # v4
+        uses: github/codeql-action/analyze@87557b9c84dde89fdd9b10e88954ac2f4248e463  # v4
         with:
           category: /language:cpp
 
       - name: Upload SARIF to GitHub Security tab
         if: hashFiles('results.sarif') != ''
-        uses: github/codeql-action/upload-sarif@7211b7c8077ea37d8641b6271f6a365a22a5fbfa  # v4
+        uses: github/codeql-action/upload-sarif@87557b9c84dde89fdd9b10e88954ac2f4248e463  # v4
         with:
           sarif_file: results.sarif
           category: codeql-cpp