diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 4a00f64..a289f26 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -10,7 +10,7 @@ name: Release policy
 jobs:
   test:
     name: run tests and linters
-    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-rust.yml@v3.3.4
+    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-rust.yml@v3.3.5
 
   release:
     needs: test
@@ -22,6 +22,6 @@ jobs:
       # Required by cosign keyless signing
       id-token: write
 
-    uses: kubewarden/github-actions/.github/workflows/reusable-release-policy-rust.yml@v3.3.4
+    uses: kubewarden/github-actions/.github/workflows/reusable-release-policy-rust.yml@v3.3.5
     with:
       oci-target: ghcr.io/${{ github.repository_owner }}/policies/verify-image-signatures
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index c2adc2d..87f615c 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -3,4 +3,4 @@ name: Continuous integration
 jobs:
   test:
     name: run tests and linters
-    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-rust.yml@v3.3.4
+    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-rust.yml@v3.3.5
diff --git a/Cargo.toml b/Cargo.toml
index 3bebe9d..374cf52 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -11,7 +11,7 @@ crate-type = ["cdylib"]
 
 [dependencies]
 anyhow = "1.0"
-k8s-openapi = { version = "0.22.0", default-features = false, features = [
+k8s-openapi = { version = "0.23.0", default-features = false, features = [
   "v1_27",
 ] }
 kubewarden-policy-sdk = "0.11.0"