diff --git a/poetry.lock b/poetry.lock
index d4a7a1db18..71cc4afbfd 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1428,14 +1428,14 @@ aio = ["azure-core[aio] (>=1.30.0)"]
 
 [[package]]
 name = "bandit"
-version = "1.8.3"
+version = "1.8.6"
 description = "Security oriented static analyser for python code."
 optional = false
 python-versions = ">=3.9"
 groups = ["dev"]
 files = [
-    {file = "bandit-1.8.3-py3-none-any.whl", hash = "sha256:28f04dc0d258e1dd0f99dee8eefa13d1cb5e3fde1a5ab0c523971f97b289bcd8"},
-    {file = "bandit-1.8.3.tar.gz", hash = "sha256:f5847beb654d309422985c36644649924e0ea4425c76dec2e89110b87506193a"},
+    {file = "bandit-1.8.6-py3-none-any.whl", hash = "sha256:3348e934d736fcdb68b6aa4030487097e23a501adf3e7827b63658df464dddd0"},
+    {file = "bandit-1.8.6.tar.gz", hash = "sha256:dbfe9c25fc6961c2078593de55fd19f2559f9e45b99f1272341f5b95dea4e56b"},
 ]
 
 [package.dependencies]
@@ -6614,4 +6614,4 @@ files = [
 [metadata]
 lock-version = "2.1"
 python-versions = ">3.9.1,<3.13"
-content-hash = "adfc2da2c6e3e803f7a151b9697dbc3f461366a03e4504eb97498cbc72b2e48c"
+content-hash = "a6c57571bc2754e1fbf7421bb8e649eab2a0605fb467d2827f249c795cab0a92"
diff --git a/pyproject.toml b/pyproject.toml
index 72ecb2d413..7be22e29d5 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -110,7 +110,7 @@ packages = [
 requires-poetry = ">=2.0"
 
 [tool.poetry.group.dev.dependencies]
-bandit = "1.8.3"
+bandit = "1.8.6"
 black = "25.1.0"
 coverage = "7.6.12"
 docker = "7.1.0"