diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 89dc417..be41ab9 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -10,7 +10,7 @@ name: Release policy
 jobs:
   test:
     name: run tests and linters
-    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-go.yml@v3.2.0
+    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-go.yml@v3.3.1
 
   release:
     needs: test
@@ -22,6 +22,6 @@ jobs:
       # Required by cosign keyless signing
       id-token: write
 
-    uses: kubewarden/github-actions/.github/workflows/reusable-release-policy-go.yml@v3.2.0
+    uses: kubewarden/github-actions/.github/workflows/reusable-release-policy-go.yml@v3.3.1
     with:
       oci-target: ghcr.io/${{ github.repository_owner }}/policies/safe-annotations
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index b022697..c7f5fa8 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -3,4 +3,4 @@ name: Continuous integration
 jobs:
   test:
     name: run tests and linters
-    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-go.yml@v3.2.0
+    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-go.yml@v3.3.1
diff --git a/go.mod b/go.mod
index 07de38d..8e6f0d9 100644
--- a/go.mod
+++ b/go.mod
@@ -2,7 +2,7 @@ module github.com/kubewarden/safe-annotations-policy
 
 go 1.22
 
-toolchain go1.22.4
+toolchain go1.22.5
 
 require (
 	github.com/deckarep/golang-set/v2 v2.6.0