diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
index d32ea2ff6..09597e6bd 100644
--- a/.github/workflows/lint.yml
+++ b/.github/workflows/lint.yml
@@ -37,7 +37,7 @@ jobs:
       uses: golang/govulncheck-action@b625fbe08f3bccbe446d94fbf87fcc875a4f50ee # v1.0.4
       with:
         cache: false
-        go-version-input: '1.24.8'
+        go-version-input: '1.24.9'
         # An explicit Go version is needed for govulncheck-action since internally
         # it uses an outdated setup-go@v5.0 action that does not respect the 'toolchain'
         # directive in the 'go.mod' file.
diff --git a/go.mod b/go.mod
index b588f0d53..47fb4effa 100644
--- a/go.mod
+++ b/go.mod
@@ -2,7 +2,7 @@ module github.com/kopia/kopia
 
 go 1.24.0
 
-toolchain go1.24.8
+toolchain go1.24.9
 
 require (
 	cloud.google.com/go/storage v1.57.0