diff --git a/.github/workflows/workflow.yaml b/.github/workflows/workflow.yaml
index 1be774e..22b8f7b 100644
--- a/.github/workflows/workflow.yaml
+++ b/.github/workflows/workflow.yaml
@@ -151,7 +151,7 @@ jobs:
       - name: Build and push Docker image
         id: push
         # https://github.com/docker/build-push-action
-        uses: docker/build-push-action@2cdde995de11925a030ce8070c3d77a52ffcf1c0 # v5.3.0
+        uses: docker/build-push-action@ca052bb54ab0790a636c9b5f226502c73d547a25 # v5.4.0
         with:
           annotations: ${{ steps.meta.outputs.annotations }}
           context: .
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
index 1cc3ce3..0dbc219 100644
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -89,7 +89,7 @@ repos:
         args: ["--profile", "black", "--filter-files"]
 
   - repo: https://github.com/renovatebot/pre-commit-hooks
-    rev: "37.385.0"
+    rev: "37.399.9"
     hooks:
       # Validate Renovate's configuration file
       - id: renovate-config-validator
diff --git a/Dockerfile b/Dockerfile
index 06d2394..16fc33f 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,6 +1,6 @@
 # This Dockerfile is based on the pattern recommended by the pipenv docs:
 # https://pipenv.pypa.io/en/latest/docker.html
-FROM python:3.12@sha256:3966b81808d864099f802080d897cef36c01550472ab3955fdd716d1c665acd6 as builder
+FROM python:3.12@sha256:ad26bf20080f6b43a7f10020201fb95a678445be9040c111e034d86dc0c80d71 as builder
 
 RUN pip install --no-cache-dir pipenv==2023.12.1
 ENV PIPENV_VENV_IN_PROJECT=1
@@ -11,7 +11,7 @@ RUN pipenv --no-site-packages install -v --deploy
 
 
 ############################################################
-FROM python:3.12-slim@sha256:afc139a0a640942491ec481ad8dda10f2c5b753f5c969393b12480155fe15a63 as final
+FROM python:3.12-slim@sha256:e3ae8cf03c4f0abbfef13a8147478a7cd92798a94fa729a36a185d9106cbae32 as final
 
 RUN adduser --uid 19876 summarizer-bot && \
     mkdir /app && \