diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index d30a061..a7416f9 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -10,7 +10,7 @@ name: Release policy
 jobs:
   test:
     name: run tests and linters
-    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-go.yml@v3.3.1
+    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-go.yml@v3.3.2
 
   release:
     needs: test
@@ -22,6 +22,6 @@ jobs:
       # Required by cosign keyless signing
       id-token: write
 
-    uses: kubewarden/github-actions/.github/workflows/reusable-release-policy-go.yml@v3.3.1
+    uses: kubewarden/github-actions/.github/workflows/reusable-release-policy-go.yml@v3.3.2
     with:
       oci-target: ghcr.io/${{ github.repository_owner }}/policies/policy-name #FIXME
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index c7f5fa8..b325061 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -3,4 +3,4 @@ name: Continuous integration
 jobs:
   test:
     name: run tests and linters
-    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-go.yml@v3.3.1
+    uses: kubewarden/github-actions/.github/workflows/reusable-test-policy-go.yml@v3.3.2
diff --git a/Makefile b/Makefile
index 3b9a68b..97f7bdc 100644
--- a/Makefile
+++ b/Makefile
@@ -16,7 +16,7 @@ policy.wasm: $(SOURCE_FILES) go.mod go.sum
 		--rm \
 		-e GOFLAGS="-buildvcs=false" \
 		-v ${PWD}:/src \
-		-w /src tinygo/tinygo:0.31.2 \
+		-w /src tinygo/tinygo:0.33.0 \
 		tinygo build -o policy.wasm -target=wasi -no-debug .
 
 artifacthub-pkg.yml: metadata.yml go.mod
diff --git a/go.mod b/go.mod
index 6e14f2b..3b5caf4 100644
--- a/go.mod
+++ b/go.mod
@@ -2,7 +2,7 @@ module github.com/kubewarden/go-policy-template
 
 go 1.22
 
-toolchain go1.22.6
+toolchain go1.23.0
 
 require (
 	github.com/francoispqt/onelog v0.0.0-20190306043706-8c2bb31b10a4