diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 0bf07021..5e469f6a 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -50,7 +50,7 @@ jobs:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
       - uses: ruby/setup-ruby@v1
         with:
-          ruby-version: "4.0.2"
+          ruby-version: "4.0.3"
       - run: bundle install
       - name: Standard
         run: bundle exec rake standard
@@ -63,7 +63,7 @@ jobs:
           submodules: true
       - uses: ruby/setup-ruby@v1
         with:
-          ruby-version: "4.0.2"
+          ruby-version: "4.0.3"
       - run: bundle install
       - name: Cucumber
         run: bundle exec cucumber
@@ -74,7 +74,7 @@ jobs:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
       - uses: ruby/setup-ruby@v1
         with:
-          ruby-version: "3.4.9"
+          ruby-version: "4.0.3"
       - run: bundle install
       - run: bundle exec rbs collection install
       - run: bundle exec steep check
@@ -85,7 +85,7 @@ jobs:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
       - uses: ruby/setup-ruby@v1
         with:
-          ruby-version: "4.0.2"
+          ruby-version: "4.0.3"
       - name: Bundle Audit
         run: bundle lock && gem install bundler-audit && bundle-audit check --update
   # check the status of other jobs, so we can have a single job dependency for branch protection
diff --git a/.ruby-version b/.ruby-version
index 4d54dadd..c4e41f94 100644
--- a/.ruby-version
+++ b/.ruby-version
@@ -1 +1 @@
-4.0.2
+4.0.3
diff --git a/.tool-versions b/.tool-versions
index 0f1e605a..34ff5005 100644
--- a/.tool-versions
+++ b/.tool-versions
@@ -1 +1 @@
-ruby 4.0.2
+ruby 4.0.3