diff --git a/.github/workflows/deployment.yml b/.github/workflows/deployment.yml
index ea6f4f048..65374e412 100644
--- a/.github/workflows/deployment.yml
+++ b/.github/workflows/deployment.yml
@@ -289,7 +289,7 @@ jobs:
     steps:
       # f.y.i.: ZAP Scan must be able to log an issue or it will fail.
       - name: ZAP Scan
-        uses: zaproxy/action-baseline@v0.13.0
+        uses: zaproxy/action-baseline@v0.14.0
         with:
           target: "https://wps-pr-${{ github.event.number }}-e1e498-dev.apps.silver.devops.gov.bc.ca"
           rules_file_name: ".zap/rules.tsv"
diff --git a/.github/workflows/renovate.yml b/.github/workflows/renovate.yml
index 3abe8ad0d..6fac43d63 100644
--- a/.github/workflows/renovate.yml
+++ b/.github/workflows/renovate.yml
@@ -12,7 +12,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@v4.2.2
       - name: Self-hosted Renovate
-        uses: renovatebot/github-action@v41.0.3
+        uses: renovatebot/github-action@v41.0.4
         with:
           configurationFile: renovate.json
           token: ${{ secrets.RENOVATE_TOKEN }}
diff --git a/.github/workflows/zap_scan.yml b/.github/workflows/zap_scan.yml
index 7e97917a3..4dc5a4d52 100644
--- a/.github/workflows/zap_scan.yml
+++ b/.github/workflows/zap_scan.yml
@@ -15,7 +15,7 @@ jobs:
           ref: main
       - name: ZAP Scan
         # f.y.i.: ZAP Scan must be able to log an issue or it will fail.
-        uses: zaproxy/action-baseline@v0.13.0
+        uses: zaproxy/action-baseline@v0.14.0
         with:
           target: "https://wps-prod.apps.silver.devops.gov.bc.ca/"
           rules_file_name: ".zap/rules.tsv"