diff --git a/package-lock.json b/package-lock.json
index bef04e7..32004a6 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -23,11 +23,11 @@
             }
         },
         "@actions/http-client": {
-            "version": "1.0.11",
-            "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-1.0.11.tgz",
-            "integrity": "sha512-VRYHGQV1rqnROJqdMvGUbY/Kn8vriQe/F9HR2AlYHzmKuM/p3kjNuXhmdBfcVgsvRWTz5C5XW5xvndZrVBuAYg==",
+            "version": "2.0.1",
+            "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.0.1.tgz",
+            "integrity": "sha512-PIXiMVtz6VvyaRsGY268qvj57hXQEpsYogYOu2nrQhlf+XCGmZstmuZBbAybUl1nQGnvS1k1eEsQ69ZoD7xlSw==",
             "requires": {
-                "tunnel": "0.0.6"
+                "tunnel": "^0.0.6"
             }
         },
         "@babel/code-frame": {
diff --git a/package.json b/package.json
index 3e1653e..64f1e49 100644
--- a/package.json
+++ b/package.json
@@ -20,7 +20,7 @@
     "homepage": "https://github.com/step-security/get-mfa-secrets#readme",
     "dependencies": {
         "@actions/core": "^1.8.2",
-        "@actions/http-client": "^1.0.11"
+        "@actions/http-client": "^2.0.1"
     },
     "devDependencies": {
         "@types/jest": "^27.0.1",