diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 5e96639b9..24ef9b0b4 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -134,7 +134,7 @@ jobs:
     runs-on: windows-latest
     steps:
       - uses: actions/checkout@v4
-      - uses: compnerd/gha-setup-swift@v0.1.0
+      - uses: compnerd/gha-setup-swift@v0.2.1
         with:
           branch: swift-5.9-release
           tag: 5.9-RELEASE
diff --git a/.github/workflows/codacy.yml b/.github/workflows/codacy.yml
index c467a7fd9..9c74f2290 100644
--- a/.github/workflows/codacy.yml
+++ b/.github/workflows/codacy.yml
@@ -42,11 +42,11 @@ jobs:
     steps:
       # Checkout the repository to the GitHub Actions runner
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@5cc54a75f9ad88159bb54046196d920e40e367a5
 
       # Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis
       - name: Run Codacy Analysis CLI
-        uses: codacy/codacy-analysis-cli-action@5cc54a75f9ad88159bb54046196d920e40e367a5
+        uses: codacy/codacy-analysis-cli-action@v4
         with:
           # Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository
           # You can also omit the token and run the tools that support default configurations