diff --git a/.github/workflows/container-image.yml b/.github/workflows/container-image.yml
index 27ef5ffa..13aeb326 100644
--- a/.github/workflows/container-image.yml
+++ b/.github/workflows/container-image.yml
@@ -36,7 +36,7 @@ jobs:
           args: --release --target ${{matrix.targetarch}}-unknown-linux-musl
 
       - name: Upload policy-server binary
-        uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
+        uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
         with:
           name: policy-server-${{ matrix.targetarch }}
           path: |
@@ -70,12 +70,12 @@ jobs:
 
       # Download the policy-server artifacts we've built inside of the previous job
       - name: Download policy-server-x86_64 artifact
-        uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
+        uses: actions/download-artifact@eaceaf801fd36c7dee90939fad912460b18a1ffe # v4.1.2
         with:
           name: policy-server-x86_64
           path: artifacts-x86_64
       - name: Download policy-server-aarch64 artifact
-        uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
+        uses: actions/download-artifact@eaceaf801fd36c7dee90939fad912460b18a1ffe # v4.1.2
         with:
           name: policy-server-aarch64
           path: artifacts-aarch64
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 7badefab..a47e594b 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -74,7 +74,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Download SBOM artifact
-        uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
+        uses: actions/download-artifact@eaceaf801fd36c7dee90939fad912460b18a1ffe # v4.1.2
         with:
           pattern: sbom-*
           path: ./
diff --git a/.github/workflows/sbom.yml b/.github/workflows/sbom.yml
index afa189a5..b38573e1 100644
--- a/.github/workflows/sbom.yml
+++ b/.github/workflows/sbom.yml
@@ -81,7 +81,7 @@ jobs:
             ghcr.io/${{github.repository_owner}}/policy-server:${SBOM_TAG}
 
       - name: Upload SBOMs as artifacts
-        uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
+        uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
         with:
           name: sbom-${{ matrix.arch }}
           path: policy-server-sbom-${{ matrix.arch }}*
diff --git a/Cargo.lock b/Cargo.lock
index e2405d50..501f87c7 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -2087,7 +2087,7 @@ dependencies = [
  "httpdate",
  "itoa",
  "pin-project-lite",
- "socket2 0.5.5",
+ "socket2 0.4.10",
  "tokio",
  "tower-service",
  "tracing",
diff --git a/Cargo.toml b/Cargo.toml
index 89599127..b27ce1e6 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -35,7 +35,7 @@ serde = { version = "1.0", features = ["derive"] }
 serde_yaml = "0.9.31"
 sha2 = "0.10"
 thiserror = "1.0"
-tokio = { version = "^1.35.1", features = ["full"] }
+tokio = { version = "^1.36.0", features = ["full"] }
 tracing = "0.1"
 tracing-futures = "0.2"
 tracing-opentelemetry = "0.22.0"