diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index be419f274f..0fc3dc3293 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -42,7 +42,7 @@ jobs:
         uses: gradle/actions/setup-gradle@ed408507eac070d1f99cc633dbcf757c94c7933a # v4.4.3
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@d3678e237b9c32a6c9bffb3315c335f976f3549f # v3.30.2
+        uses: github/codeql-action/init@192325c86100d080feab897ff886c34abd4c83a3 # v3.30.3
         with:
           languages: ${{ matrix.language }}
           # using "linked" helps to keep up with the latest Kotlin support
@@ -57,7 +57,7 @@ jobs:
         run: ./gradlew assemble --no-build-cache --no-daemon
 
       - name: Perform CodeQL analysis
-        uses: github/codeql-action/analyze@d3678e237b9c32a6c9bffb3315c335f976f3549f # v3.30.2
+        uses: github/codeql-action/analyze@192325c86100d080feab897ff886c34abd4c83a3 # v3.30.3
         with:
           category: "/language:${{matrix.language}}"
 
diff --git a/.github/workflows/ossf-scorecard.yml b/.github/workflows/ossf-scorecard.yml
index 4270cbd26e..26ac5ec51b 100644
--- a/.github/workflows/ossf-scorecard.yml
+++ b/.github/workflows/ossf-scorecard.yml
@@ -44,6 +44,6 @@ jobs:
       # Upload the results to GitHub's code scanning dashboard (optional).
       # Commenting out will disable upload of results to your repo's Code Scanning dashboard
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@d3678e237b9c32a6c9bffb3315c335f976f3549f # v3.30.2
+        uses: github/codeql-action/upload-sarif@192325c86100d080feab897ff886c34abd4c83a3 # v3.30.3
         with:
           sarif_file: results.sarif
diff --git a/javaagent/Dockerfile b/javaagent/Dockerfile
index 1eaf9bca51..82a43e35b3 100644
--- a/javaagent/Dockerfile
+++ b/javaagent/Dockerfile
@@ -1,4 +1,4 @@
-FROM eclipse-temurin:17.0.16_8-jre@sha256:d572f98b3201d3b5a060a08eb489f7bd31184db4d52f3f96d7bb9a69b4a79911
+FROM eclipse-temurin:17.0.16_8-jre@sha256:0c51b7f05f502292459bba444660717fc33933e5c78274f81b9c54519d8f70b4
 
 ADD build/libs/app.jar /app.jar
 ADD build/agent/opentelemetry-javaagent.jar /opentelemetry-javaagent.jar
diff --git a/kotlin-extension/build.gradle.kts b/kotlin-extension/build.gradle.kts
index 1d7930fffd..548d0aed16 100644
--- a/kotlin-extension/build.gradle.kts
+++ b/kotlin-extension/build.gradle.kts
@@ -1,5 +1,5 @@
 plugins {
-    id ("org.jetbrains.kotlin.jvm") version "2.2.10"
+    id ("org.jetbrains.kotlin.jvm") version "2.2.20"
 }
 
 description = "OpenTelemetry Example for Kotlin extensions"
diff --git a/logging-k8s-stdout-otlp-json/Dockerfile b/logging-k8s-stdout-otlp-json/Dockerfile
index af8f48a83f..9bf798536d 100644
--- a/logging-k8s-stdout-otlp-json/Dockerfile
+++ b/logging-k8s-stdout-otlp-json/Dockerfile
@@ -1,4 +1,4 @@
-FROM eclipse-temurin:21.0.8_9-jre@sha256:2f696f62306d28d32cce2ea6bbb2f2f5b8df736adcc019be61d0f90ce88f07d5
+FROM eclipse-temurin:21.0.8_9-jre@sha256:49f7a6b514f9f72fd27d178abd553dde1e0430c3508a4f00f3a7d605a4c76b68
 
 WORKDIR /usr/src/app/
 
diff --git a/prometheus/Dockerfile b/prometheus/Dockerfile
index f93a747207..ac5470eab8 100644
--- a/prometheus/Dockerfile
+++ b/prometheus/Dockerfile
@@ -1,4 +1,4 @@
-FROM eclipse-temurin:11.0.28_6-jre@sha256:3cb109ccbd7756214c84995a5f216177be77a1ecafbb7bed3ed473e2611a82ab
+FROM eclipse-temurin:11.0.28_6-jre@sha256:b78d72dae5e186b8afd33a4c70b82713aa9e3911aa1edbf8b075a0ce0faee97e
 
 ADD build/libs/opentelemetry-examples-prometheus-*-SNAPSHOT-all.jar /app.jar