diff --git a/.github/workflows/create-release.yml b/.github/workflows/create-release.yml
index c20226f..de446bd 100644
--- a/.github/workflows/create-release.yml
+++ b/.github/workflows/create-release.yml
@@ -49,7 +49,7 @@ jobs:
           && !( contains(github.event.inputs.versionTag, 'alpha')
           || contains(github.event.inputs.versionTag, 'beta')
           || contains(github.event.inputs.versionTag, 'rc')) }}
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           github-token: ${{secrets.JOHNNY_Q5_REPORTS_TOKEN}}
           script: |
@@ -63,7 +63,7 @@ jobs:
           && ( contains(github.event.inputs.versionTag, 'alpha')
           || contains(github.event.inputs.versionTag, 'beta')
           || contains(github.event.inputs.versionTag, 'rc')) }}
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           github-token: ${{secrets.JOHNNY_Q5_REPORTS_TOKEN}}
           script: |
diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml
index f839125..1eab07e 100644
--- a/.github/workflows/sonarcloud.yml
+++ b/.github/workflows/sonarcloud.yml
@@ -21,7 +21,7 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v5
       - name: Debug OIDC (get a token)
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const token = await core.getIDToken('sigstore'); // audience example