diff --git a/Cargo.lock b/Cargo.lock
index 1b2119832..4f0e1d63c 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -2213,8 +2213,8 @@ checksum = "a1d01941d82fa2ab50be1e79e6714289dd7cde78eba4c074bc5a4374f650dfe0"
 
 [[package]]
 name = "quil-rs"
-version = "0.22.5"
-source = "git+https://github.com/rigetti/quil-rs?tag=quil-py/v0.6.5#bfee2c882b402c7b14b921af2ca346b639378f4b"
+version = "0.22.6"
+source = "git+https://github.com/rigetti/quil-rs?tag=quil-py/v0.6.6#b406c3e98a974e391d16236a75b8e6cbea102f2f"
 dependencies = [
  "approx",
  "indexmap 1.9.3",
diff --git a/Cargo.toml b/Cargo.toml
index 483ef1a62..350b420b7 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -15,7 +15,7 @@ tokio = "1.34.0"
 # be a `quil-py` tag and should match the version used in `crates/python/pyproject.toml`
 # The version must also be specified in order to publish to crates.io. Cargo enforces
 # that the specified version is the same as the version in the git repository.
-quil-rs = { version = "0.22.5", git = "https://github.com/rigetti/quil-rs", tag = "quil-py/v0.6.5" }
+quil-rs = { version = "0.22.6", git = "https://github.com/rigetti/quil-rs", tag = "quil-py/v0.6.6" }
 
 # ndarray is used by the `qcs` crate, but it is also used in the `python` crate via a
 # re-export through the numpy crate. They should be updated as a pair to keep both
diff --git a/crates/python/pyproject.toml b/crates/python/pyproject.toml
index 18dd7887a..556ddc1f2 100644
--- a/crates/python/pyproject.toml
+++ b/crates/python/pyproject.toml
@@ -20,7 +20,7 @@ classifiers = [
   "Programming Language :: Python :: 3.11",
   "Operating System :: OS Independent",
 ]
-dependencies = ["quil==0.6.5"]
+dependencies = ["quil==0.6.6"]
 
 # PEP 621 specifies the [project] table as the source for project metadata. However, Poetry only supports [tool.poetry]
 # We can remove this table once this issue is resolved: https://github.com/python-poetry/poetry/issues/3332
diff --git a/deny.toml b/deny.toml
index 7b8cba519..20d2a2355 100644
--- a/deny.toml
+++ b/deny.toml
@@ -28,6 +28,8 @@ ignore = [
     "RUSTSEC-2023-0052",  # Introduced by transitive dependency `webpki`.
                           # `hyper-proxy`, then `qcs-api-client-rust` need to update in order to remove
                           # `webpki`.
+    "RUSTSEC-2023-0055",  # there isn't a newer version of lexical with a fix
+    "RUSTSEC-2024-0006",
 ]
 
 # This section is considered when running `cargo deny check licenses`