diff --git a/.github/workflows/scan-image.yml b/.github/workflows/scan-image.yml
index b2d8c15..022c318 100644
--- a/.github/workflows/scan-image.yml
+++ b/.github/workflows/scan-image.yml
@@ -45,7 +45,7 @@ jobs:
       - name: Upload SARIF
         if: always()
         id: upload_sarif
-        uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
+        uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
         with:
           sarif_file: trivy-results.sarif
 
diff --git a/Dockerfile b/Dockerfile
index 4a3cb2e..9717c61 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -36,7 +36,7 @@ apt-get update --yes
 
 apt-get install --yes \
   "apt-transport-https=2.7.14build2" \
-  "curl=8.5.0-2ubuntu10.5"
+  "curl=8.5.0-2ubuntu10.6"
 
 apt-get clean --yes