diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml
index c80831095f..46663929f6 100644
--- a/.github/workflows/bandit.yml
+++ b/.github/workflows/bandit.yml
@@ -20,4 +20,4 @@ jobs:
       security-events: write
     steps:
       - name: Perform Bandit Analysis
-        uses: PyCQA/bandit-action@67a458d90fa11fb1463e91e7f4c8f068b5863c7f  # v1.0.1
+        uses: PyCQA/bandit-action@8a1b30610f61f3f792fe7556e888c9d7dffa52de
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
index 0479db6a59..4da2dddef3 100644
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -12,8 +12,6 @@ ci:
     skip: [bandit]
     submodules: false
 
-gen_exclude: &gen_exclude '^cuda_bindings/cuda/bindings/.*\.in?$|cuda_bindings/docs/source/module/.*\.rst?$'
-
 # Please update the rev: SHAs below with this command:
 # pre-commit autoupdate --freeze
 repos:
@@ -54,9 +52,8 @@ repos:
     - id: check-yaml
     - id: debug-statements
     - id: end-of-file-fixer
-      exclude: *gen_exclude
+      exclude: &gen_exclude '^(?:cuda_bindings/cuda/bindings/.*\.in?|cuda_bindings/docs/source/module/.*\.rst?)$'
     - id: mixed-line-ending
-    - id: requirements-txt-fixer
     - id: trailing-whitespace
       exclude: *gen_exclude