diff --git a/.github/workflows/release-preview-pr.yml b/.github/workflows/release-preview-pr.yml
index 154a67dd..20b245fc 100644
--- a/.github/workflows/release-preview-pr.yml
+++ b/.github/workflows/release-preview-pr.yml
@@ -30,7 +30,7 @@ jobs:
     steps:
       - if: ${{ needs.notes.outputs.no_release == 'false' }}
         name: Add comment to the PR
-        uses: marocchino/sticky-pull-request-comment@331f8f5b4215f0445d3c07b4967662a32a2d3e31 # v2.9.0
+        uses: marocchino/sticky-pull-request-comment@52423e01640425a022ef5fd42c6fb5f633a02728 # v2.9.1
         with:
           header: ReleasePreview
           message: |
@@ -42,7 +42,7 @@ jobs:
 
       - if: ${{ needs.notes.outputs.no_release == 'true' }}
         name: Add comment to the PR
-        uses: marocchino/sticky-pull-request-comment@331f8f5b4215f0445d3c07b4967662a32a2d3e31 # v2.9.0
+        uses: marocchino/sticky-pull-request-comment@52423e01640425a022ef5fd42c6fb5f633a02728 # v2.9.1
         with:
           header: ReleasePreview
           message: "⚠⚠⚠ This pull request will not create a new release. ⚠⚠⚠"
diff --git a/build.gradle b/build.gradle
index bfeb8a86..7ca233ea 100644
--- a/build.gradle
+++ b/build.gradle
@@ -5,7 +5,11 @@ plugins {
   id 'org.sonarqube' version '6.0.1.5171'
   id "com.diffplug.spotless" version "7.0.2"
   id "com.google.cloud.tools.jib" version "3.4.4"
-  id 'org.cyclonedx.bom' version '1.10.0'
+  id 'org.cyclonedx.bom' version '2.0.0'
+}
+
+cyclonedxBom {
+  schemaVersion = "1.5"
 }
 
 repositories {
@@ -107,7 +111,7 @@ dependencies {
   testImplementation enforcedPlatform("org.junit:junit-bom:5.11.4")
   testImplementation 'org.junit.jupiter:junit-jupiter'
   testImplementation 'org.junit-pioneer:junit-pioneer:2.3.0'
-  testImplementation 'org.assertj:assertj-core:3.27.2', {
+  testImplementation 'org.assertj:assertj-core:3.27.3', {
     // conflict of 1.12.10 in assertj vs 1.12.13 in mockito-core
     exclude group: "net.bytebuddy", module: "byte-buddy"
     exclude group: "net.bytebuddy", module: "byte-buddy-agent"