diff --git a/.github/workflows/reusable-docker-build-native.yaml b/.github/workflows/reusable-docker-build-native.yaml
index e8dc1b1..51a110d 100644
--- a/.github/workflows/reusable-docker-build-native.yaml
+++ b/.github/workflows/reusable-docker-build-native.yaml
@@ -175,7 +175,7 @@ jobs:
         # https://securitylab.github.com/research/github-actions-preventing-pwn-requests/
       - name: Docker Build and Push
         id: build_image
-        uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f #v7.1.0
+        uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf #v7.2.0
         with:
           platforms: ${{ matrix.platform }}
           # zizmor: ignore[template-injection]
diff --git a/.github/workflows/reusable-docker-build.yaml b/.github/workflows/reusable-docker-build.yaml
index c71e7a2..e715ace 100644
--- a/.github/workflows/reusable-docker-build.yaml
+++ b/.github/workflows/reusable-docker-build.yaml
@@ -172,7 +172,7 @@ jobs:
         # https://securitylab.github.com/research/github-actions-preventing-pwn-requests/
       - name: Docker Build and Push
         id: build_image
-        uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f #v7.1.0
+        uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf #v7.2.0
         with:
           platforms: ${{ inputs.platforms }}
           # this action is expected to receive user inputs directly, so no sanitization here