diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index 30f0560..5571239 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -16,6 +16,8 @@ permissions:
     contents: read
     security-events: write
     actions: read
+    security-events: write
+    actions: read
 
 env:
     CARGO_TERM_COLOR: always
@@ -57,7 +59,7 @@ jobs:
               uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
 
             - name: Initialize CodeQL
-              uses: github/codeql-action/init@v3
+              uses: github/codeql-action/init@v4
               with:
                   languages: rust
 
@@ -68,4 +70,4 @@ jobs:
               run: cargo build --workspace --all-targets
 
             - name: Perform CodeQL Analysis
-              uses: github/codeql-action/analyze@v3
+              uses: github/codeql-action/analyze@v4