diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 142a4ed8b..99e13e0b3 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -150,12 +150,12 @@ jobs:
         run: make vendor vendor.check
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@03e7845b7bfcd5e7fb63d1ae8c61b0e791134fab # v2
+        uses: github/codeql-action/init@b374143c1149a9115d881581d29b8390bbcbb59c # v3
         with:
           languages: go
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@03e7845b7bfcd5e7fb63d1ae8c61b0e791134fab # v2
+        uses: github/codeql-action/analyze@b374143c1149a9115d881581d29b8390bbcbb59c # v3
 
   trivy-scan-fs:
     runs-on: ubuntu-22.04