diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 0e41a1e8200b4..fc14c32eec69f 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -36,7 +36,7 @@ jobs:
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@9e907b5e64f6b83e7804b09294d44122997950d6 # v4.32.3
+        uses: github/codeql-action/init@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
         # Override language selection by uncommenting this and choosing your languages
         # with:
         #   languages: go, javascript, csharp, python, cpp, java
@@ -46,4 +46,4 @@ jobs:
           make
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@9e907b5e64f6b83e7804b09294d44122997950d6 # v4.32.3
+        uses: github/codeql-action/analyze@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index c9a1f13b3cc51..45061fa42e0f3 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -49,6 +49,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@9e907b5e64f6b83e7804b09294d44122997950d6 # tag=v4.32.3
+        uses: github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # tag=v4.32.4
         with:
           sarif_file: results.sarif
diff --git a/Vagrantfile b/Vagrantfile
index 91a1923615229..d251c1c1cc26e 100644
--- a/Vagrantfile
+++ b/Vagrantfile
@@ -84,7 +84,9 @@ Vagrant.configure("2") do |config|
             lsof \
             make \
             strace \
+            kernel-modules-extra-$(uname -r) \
             ${INSTALL_PACKAGES}
+        modprobe xt_comment
     SHELL
   end