diff --git a/.github/workflows/codeql-code-scanning.yml b/.github/workflows/codeql-code-scanning.yml
index b6aac9c41c0599..4baf48d5a25e26 100644
--- a/.github/workflows/codeql-code-scanning.yml
+++ b/.github/workflows/codeql-code-scanning.yml
@@ -30,16 +30,16 @@ jobs:
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4
+      uses: github/codeql-action/init@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4
       with:
         languages: ${{ matrix.language }}
         config-file: ./.github/codeql-config.yml
         queries: security-and-quality
 
     - name: Autobuild
-      uses: github/codeql-action/autobuild@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4
+      uses: github/codeql-action/autobuild@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v4
+      uses: github/codeql-action/analyze@fdbfb4d2750291e159f0156def62b853c2798ca2 # v4
       with:
         category: "/language:${{matrix.language}}"
diff --git a/package-lock.json b/package-lock.json
index 134a848fb7aa63..b3565db70db3f3 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -7505,9 +7505,9 @@
       "license": "MIT"
     },
     "node_modules/qunit": {
-      "version": "2.24.2",
-      "resolved": "https://registry.npmjs.org/qunit/-/qunit-2.24.2.tgz",
-      "integrity": "sha512-dWlYs+Q9AIDT3eHKgkpEpWrSjHjqTJNCAJr1tUo5bQuDMzlZvaqCz1bNZhqzNu41ibkIQ7b50S9y6IMlrrUfNQ==",
+      "version": "2.24.3",
+      "resolved": "https://registry.npmjs.org/qunit/-/qunit-2.24.3.tgz",
+      "integrity": "sha512-JTHwSfHf2Cw8TqusZo2tT4F9d+XA/pp/veoxUDiPNHtB1Wc1VPctiHHIv6HA3vrXNOBu9LSzFM7YU2OV9Gz4vQ==",
       "dev": true,
       "license": "MIT",
       "dependencies": {