diff --git a/.github/workflows/codecov.yml b/.github/workflows/codecov.yml
index 07393ba..2785dc6 100644
--- a/.github/workflows/codecov.yml
+++ b/.github/workflows/codecov.yml
@@ -10,7 +10,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450
+        uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99
         with:
           egress-policy: audit
 
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index a94e3a7..d3bb648 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -42,7 +42,7 @@ jobs:
 
     steps:
     - name: Harden Runner
-      uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450
+      uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99
       with:
         egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
 
diff --git a/.github/workflows/go.yml b/.github/workflows/go.yml
index bd401b1..77b8f54 100644
--- a/.github/workflows/go.yml
+++ b/.github/workflows/go.yml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ${{ matrix.os }}
     steps:
     - name: Harden Runner
-      uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450
+      uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99
       with:
         egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
 
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 84b86cb..b5c0e0c 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450
+        uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99
         with:
           egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
 
diff --git a/.github/workflows/mysql.yml b/.github/workflows/mysql.yml
index 8022c70..82a6f0d 100644
--- a/.github/workflows/mysql.yml
+++ b/.github/workflows/mysql.yml
@@ -24,7 +24,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450
+        uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99
         with:
           egress-policy: audit
           allowed-endpoints: >
diff --git a/.github/workflows/pg.yml b/.github/workflows/pg.yml
index ab797e5..62805d2 100644
--- a/.github/workflows/pg.yml
+++ b/.github/workflows/pg.yml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450
+        uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99
         with:
           egress-policy: audit
           allowed-endpoints: >
diff --git a/.github/workflows/s2.yml b/.github/workflows/s2.yml
index 8f87534..1a76d0b 100644
--- a/.github/workflows/s2.yml
+++ b/.github/workflows/s2.yml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450
+        uses: step-security/harden-runner@9ca718d3bf646d6534007c269a635b3e54cadf99
         with:
           egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs