diff --git a/.github/workflows/branch-protection-sentinel.yml b/.github/workflows/branch-protection-sentinel.yml
index a71441ab1..ceffcb8f3 100644
--- a/.github/workflows/branch-protection-sentinel.yml
+++ b/.github/workflows/branch-protection-sentinel.yml
@@ -13,7 +13,7 @@ jobs:
     name: Verify push to main is from PR merge
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 2
 
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 7f80834dc..5d6b89eaa 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -26,7 +26,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Initialize CodeQL
         uses: github/codeql-action/init@v3
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index 7155ffdb3..7a1801316 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -24,7 +24,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0