diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index e00265303..67bb2b8b2 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -177,7 +177,7 @@ jobs:
 
       - uses: ./.github/actions/job-preamble
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: updater-build
 
@@ -219,7 +219,7 @@ jobs:
 
       - uses: ./.github/actions/job-preamble
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: updater-build
 
@@ -227,7 +227,7 @@ jobs:
         run: |
           tar xvzf updater-build.tgz
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: genesis-dump
           path: /tmp/genesis-dump
@@ -267,7 +267,7 @@ jobs:
 
       - uses: ./.github/actions/job-preamble
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: scanner-build-${{ matrix.goos }}-${{ matrix.goarch }}
 
@@ -275,7 +275,7 @@ jobs:
         run: |
           tar xvzf scanner-build-${{ matrix.goos }}-${{ matrix.goarch }}.tgz
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         # Run this step if it's not a PR or the PR contains the `generate-dumps-on-pr` label
         # When this step is skipped `get_genesis_dump` will pull the vulnerability data from our GCS bucket
         if: |
@@ -324,7 +324,7 @@ jobs:
 
       - uses: ./.github/actions/job-preamble
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         if: |
           github.event_name != 'pull_request' ||
           contains(github.event.pull_request.labels.*.name, 'generate-dumps-on-pr')
@@ -383,7 +383,7 @@ jobs:
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v3
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: scanner-bundle-${{ matrix.goos }}-${{ matrix.goarch }}
 
@@ -391,7 +391,7 @@ jobs:
         run: |
           tar xvzf scanner-bundle-${{ matrix.goos }}-${{ matrix.goarch }}.tgz
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: scanner-db-bundle
           path: image/db/rhel
@@ -494,7 +494,7 @@ jobs:
 
       - uses: ./.github/actions/job-preamble
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: updater-build
 
@@ -502,7 +502,7 @@ jobs:
         run: |
           tar xvzf updater-build.tgz
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: genesis-dump
           path: /tmp/genesis-dump
@@ -541,7 +541,7 @@ jobs:
           fetch-depth: 0
           ref: ${{ github.event.pull_request.head.sha }}
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: offline-dump
 
@@ -612,7 +612,7 @@ jobs:
 
       - uses: ./.github/actions/job-preamble
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: db-dump
           path: /tmp/postgres
@@ -641,12 +641,12 @@ jobs:
 
       - uses: ./.github/actions/handle-tagged-build
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: vuln-dump
           path: /tmp/vuln-dump
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: db-dump
           path: /tmp/postgres
@@ -673,7 +673,7 @@ jobs:
 
       - uses: ./.github/actions/job-preamble
 
-      - uses: actions/download-artifact@v4
+      - uses: actions/download-artifact@v5
         with:
           name: vuln-dump
           path: /tmp/vuln-dump