diff --git a/.github/workflows/npm-audit-autofix.yml b/.github/workflows/npm-audit-autofix.yml
index c70c5de..87f7179 100644
--- a/.github/workflows/npm-audit-autofix.yml
+++ b/.github/workflows/npm-audit-autofix.yml
@@ -72,7 +72,7 @@ jobs:
       - name: npm audit fix
         run: |
           set +e
-          npm audit fix${{ inputs.omit_dev && ' --omit=dev' || '' }}
+          npm audit fix
           set -e
 
       - name: check for changes
diff --git a/.github/workflows/security-scan-artifacts.yml b/.github/workflows/security-scan-artifacts.yml
index d918706..2c25c80 100644
--- a/.github/workflows/security-scan-artifacts.yml
+++ b/.github/workflows/security-scan-artifacts.yml
@@ -85,7 +85,7 @@ jobs:
       - name: trivy filesystem scan
         id: trivy-fs
         if: ${{ inputs.artifact_path != '' && steps.check-artifact.outputs.exists == 'true' }}
-        uses: aquasecurity/trivy-action@0.35.0
+        uses: aquasecurity/trivy-action@v0.36.0
         with:
           scan-type: "fs"
           scan-ref: "${{ inputs.artifact_path }}"
diff --git a/.github/workflows/test-and-build.yml b/.github/workflows/test-and-build.yml
index baf6b7d..0c412c6 100644
--- a/.github/workflows/test-and-build.yml
+++ b/.github/workflows/test-and-build.yml
@@ -156,7 +156,7 @@ jobs:
             ${{ inputs.root_dir }}/yarn.lock
             ${{ inputs.root_dir }}/pnpm-lock.yaml
 
-      - uses: astral-sh/setup-uv@v7
+      - uses: astral-sh/setup-uv@v8.1.0
         if: ${{ inputs.tool == 'uv' }}
         with:
           enable-cache: true