diff --git a/action.yml b/action.yml
index 1230f47..37719f5 100644
--- a/action.yml
+++ b/action.yml
@@ -27,12 +27,12 @@ runs:
         fi
       shell: 'bash'
     - name: 'Install cosign'
-      uses: 'sigstore/cosign-installer@6e04d228eb30da1757ee4e1dd75a0ec73a653e06' # ratchet:sigstore/cosign-installer@v3.0.5
+      uses: 'sigstore/cosign-installer@11086d25041f77fe8fe7b9ea4e48e3b9192b8f19' # ratchet:sigstore/cosign-installer@v3.1.2
       with:
-        cosign-release: 'v2.0.2'
+        cosign-release: 'v2.2.0'
     - name: 'Generate SBOM'
       if: inputs.sbom == 'auto-generate-for-me-please.json'
-      uses: 'aquasecurity/trivy-action@41f05d9ecffa2ed3f1580af306000f734b733e54' # ratchet:aquasecurity/trivy-action@0.11.0
+      uses: 'aquasecurity/trivy-action@f78e9ecf42a1271402d4f484518b9313235990e1' # ratchet:aquasecurity/trivy-action@0.13.1
       with:
         scan-type: 'image'
         format: 'cyclonedx'