diff --git a/.github/workflows/ci-license.yml b/.github/workflows/ci-license.yml
index 0c3e91a..9e5b21b 100644
--- a/.github/workflows/ci-license.yml
+++ b/.github/workflows/ci-license.yml
@@ -45,7 +45,7 @@ jobs:
           fi
         shell: bash
 
-      - uses: marocchino/sticky-pull-request-comment@d2ad0de260ae8b0235ce059e63f2949ba9e05943 # v2.9.3
+      - uses: marocchino/sticky-pull-request-comment@773744901bac0e8cbb5a0dc842800d45e9b2b405 # v2.9.4
         if: ${{ steps.check.outputs.result > 0 }}
         with:
           header: license-error
@@ -70,7 +70,7 @@ jobs:
         if: ${{ steps.check.outputs.result > 0 }}
         run: exit 1
 
-      - uses: marocchino/sticky-pull-request-comment@d2ad0de260ae8b0235ce059e63f2949ba9e05943 # v2.9.3
+      - uses: marocchino/sticky-pull-request-comment@773744901bac0e8cbb5a0dc842800d45e9b2b405 # v2.9.4
         if: ${{ steps.check.outputs.result == 0 }}
         with:
           header: license-error
diff --git a/.github/workflows/update.yml b/.github/workflows/update.yml
index ca3a1ae..3b362b4 100644
--- a/.github/workflows/update.yml
+++ b/.github/workflows/update.yml
@@ -28,7 +28,7 @@ jobs:
         # Don't merge updates to GitHub Actions versions automatically.
         # (Some repos may wish to limit by version range (major/minor/patch), or scope (dep vs dev-dep), too.)
         if: contains(steps.metadata.outputs.package-ecosystem, 'npm')
-        uses: lewagon/wait-on-check-action@0dceb95e7c4cad8cc7422aee3885998f5cab9c79 # v1.4.0
+        uses: lewagon/wait-on-check-action@3603e826ee561ea102b58accb5ea55a1a7482343 # v1.4.1
         with:
           ref: ${{ github.event.pull_request.head.sha }}
           repo-token: ${{ secrets.GITHUB_TOKEN }}