diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 91372e9..801a127 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -43,22 +43,22 @@ jobs:
               env:
                   GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
             - name: "Sign .tar.gz"
-              uses: actions/attest-build-provenance@db473fddc028af60658334401dc6fa3ffd8669fd # v2.3.0
+              uses: actions/attest-build-provenance@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 # v4.1.0
               with:
                   subject-path: "dist/*.tar.gz"
             - name: "Sign .deb"
-              uses: actions/attest-build-provenance@db473fddc028af60658334401dc6fa3ffd8669fd # v2.3.0
+              uses: actions/attest-build-provenance@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 # v4.1.0
               with:
                   subject-path: "dist/*.deb"
             - name: "Attest checksums"
-              uses: actions/attest-build-provenance@db473fddc028af60658334401dc6fa3ffd8669fd # v2.3.0
+              uses: actions/attest-build-provenance@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 # v4.1.0
               with:
                   subject-path: "dist/checksums.txt"
             - name: "Attest SBOMs"
-              uses: actions/attest-build-provenance@db473fddc028af60658334401dc6fa3ffd8669fd # v2.3.0
+              uses: actions/attest-build-provenance@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 # v4.1.0
               with:
                   subject-path: "dist/*.sbom.json"
             - name: "Attest source archive"
-              uses: actions/attest-build-provenance@db473fddc028af60658334401dc6fa3ffd8669fd # v2.3.0
+              uses: actions/attest-build-provenance@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 # v4.1.0
               with:
                   subject-path: "dist/*_source.tar.gz"
\ No newline at end of file