diff --git a/.github/workflows/analyze.yml b/.github/workflows/analyze.yml
index e82d538..976b0d4 100644
--- a/.github/workflows/analyze.yml
+++ b/.github/workflows/analyze.yml
@@ -63,13 +63,13 @@ jobs:
           fetch-depth: 2
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
+        uses: github/codeql-action/init@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
         with:
           languages: 'java'
           queries: 'security-and-quality'
 
       - name: Autobuild
-        uses: github/codeql-action/autobuild@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
+        uses: github/codeql-action/autobuild@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
+        uses: github/codeql-action/analyze@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 43d0fe5..263f32d 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -20,7 +20,7 @@ to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 - Bump actions/setup-java from 3.13.0 to 4.3.0 (#374, #389, #416, #425).
 - Bump actions/cache from 3.3.2 to 4.0.1 (#381, #385, #391).
 - Bump actions/checkout from 4.1.1 to 4.1.7 (#387, #397, #400, #407).
-- Bump github/codeql-action from 2.13.4 to 3.26.0 (#401, #409, #417).
+- Bump github/codeql-action from 2.13.4 to 3.26.8 (#401, #409, #417, #427).
 
 ### Thanks