diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
index 8ad8276..50affc1 100644
--- a/.github/workflows/docker.yml
+++ b/.github/workflows/docker.yml
@@ -76,7 +76,7 @@ jobs:
           tags: drone-discord:scan
 
       - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@v0.35.0
+        uses: aquasecurity/trivy-action@v0.36.0
         with:
           image-ref: "drone-discord:scan"
           format: "sarif"
diff --git a/.github/workflows/testing.yml b/.github/workflows/testing.yml
index 5e1fa56..6d24737 100644
--- a/.github/workflows/testing.yml
+++ b/.github/workflows/testing.yml
@@ -67,6 +67,6 @@ jobs:
           go test -v -covermode=atomic -coverprofile=coverage.out
 
       - name: Upload coverage to Codecov
-        uses: codecov/codecov-action@v5
+        uses: codecov/codecov-action@v6
         with:
           flags: ${{ matrix.os }},go-${{ matrix.go }}
diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
index b2349e7..224c8fe 100644
--- a/.github/workflows/trivy.yml
+++ b/.github/workflows/trivy.yml
@@ -24,7 +24,7 @@ jobs:
         uses: actions/checkout@v6
 
       - name: Run Trivy vulnerability scanner (repo)
-        uses: aquasecurity/trivy-action@v0.35.0
+        uses: aquasecurity/trivy-action@v0.36.0
         with:
           scan-type: "fs"
           scan-ref: "."
@@ -69,7 +69,7 @@ jobs:
           tags: drone-discord:scan
 
       - name: Run Trivy vulnerability scanner (image)
-        uses: aquasecurity/trivy-action@v0.35.0
+        uses: aquasecurity/trivy-action@v0.36.0
         with:
           image-ref: "drone-discord:scan"
           format: "sarif"