diff --git a/.github/workflows/auto_merge.yaml b/.github/workflows/auto_merge.yaml
index ee8e8f2f1..ece3f60da 100644
--- a/.github/workflows/auto_merge.yaml
+++ b/.github/workflows/auto_merge.yaml
@@ -20,7 +20,7 @@ jobs:
           allowed-conclusions: success
       - name: Dependabot metadata
         id: metadata
-        uses: dependabot/fetch-metadata@5e5f99653a5b510e8555840e80cbf1514ad4af38 # v2.1.0
+        uses: dependabot/fetch-metadata@dbb049abf0d677abbd7f7eee0375145b417fdd34 # v2.2.0
         with:
           github-token: "${{ secrets.GITHUB_TOKEN }}"
       - name: Enable auto-merge for Dependabot PRs
diff --git a/.github/workflows/devcontainer-image-build.yaml b/.github/workflows/devcontainer-image-build.yaml
index 673531b63..dd9cee3e4 100644
--- a/.github/workflows/devcontainer-image-build.yaml
+++ b/.github/workflows/devcontainer-image-build.yaml
@@ -15,11 +15,11 @@ jobs:
       - name: Checkout (GitHub)
         uses: actions/checkout@v4
       - name: Set up QEMU for multi-architecture builds
-        uses: docker/setup-qemu-action@v3.0.0
+        uses: docker/setup-qemu-action@v3.2.0
         with:
           platforms: linux/amd64,linux/arm64
       - name: Setup Docker buildx for multi-architecture builds
-        uses: docker/setup-buildx-action@v3.3.0
+        uses: docker/setup-buildx-action@v3.6.1
         with:
           use: true
       - name: Login to GitHub Container Registry
diff --git a/.github/workflows/push-image.yaml b/.github/workflows/push-image.yaml
index 200d42ec4..b2a04b5c2 100644
--- a/.github/workflows/push-image.yaml
+++ b/.github/workflows/push-image.yaml
@@ -91,7 +91,7 @@ jobs:
       - name: Add executable permission to go binary files
         run: chmod +x bin/*
       - name: Set up docker
-        uses: docker/setup-buildx-action@d70bba72b1f3fd22344832f00baa16ece964efeb # v3.3.0
+        uses: docker/setup-buildx-action@988b5a0280414f521da01fcc63a27aeeb4b104db # v3.6.1
         with:
           install: true
       - name: Create Dockerfile of go applications