diff --git a/api/package.json b/api/package.json
index 5de2e20a221..a2d6e0dbc1e 100644
--- a/api/package.json
+++ b/api/package.json
@@ -6,7 +6,7 @@
   "dependencies": {
     "@aws-sdk/client-ses": "3.441.0",
     "@fastify/cookie": "9.1.0",
-    "@fastify/csrf-protection": "6.3.0",
+    "@fastify/csrf-protection": "6.4.0",
     "@fastify/middie": "8.3",
     "@fastify/session": "10.5.0",
     "@fastify/swagger": "8.12.0",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 74fc13d735c..2d2c51551ea 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -175,8 +175,8 @@ importers:
         specifier: 9.1.0
         version: 9.1.0
       '@fastify/csrf-protection':
-        specifier: 6.3.0
-        version: 6.3.0
+        specifier: 6.4.0
+        version: 6.4.0
       '@fastify/middie':
         specifier: '8.3'
         version: 8.3.0
@@ -6627,8 +6627,8 @@ packages:
       fastify-plugin: 4.5.1
     dev: false
 
-  /@fastify/csrf-protection@6.3.0:
-    resolution: {integrity: sha512-RktewyPbVMSbKrRKmn0VzKfqtRp+0mYodAz7tbJMmz1QJFWFeP5F5mS8Ym1djaM0EFqCBItIceJizeLOD+UILA==}
+  /@fastify/csrf-protection@6.4.0:
+    resolution: {integrity: sha512-x8JLaa18A5OMGXVLY35gN6nEaOBSI1uoUjjnNKRYqyXq/HMGCwc+ZuSOhgrN7zkhruVoAO5s4gQ0i7Fp+BvTrQ==}
     dependencies:
       '@fastify/csrf': 6.2.0
       '@fastify/error': 3.3.0