diff --git a/.github/workflows/bandit_scan.yml b/.github/workflows/bandit_scan.yml
index 0912117..6e3bfd9 100644
--- a/.github/workflows/bandit_scan.yml
+++ b/.github/workflows/bandit_scan.yml
@@ -12,7 +12,7 @@ jobs:
       # required for all workflows
       security-events: write
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
       - name: Setup uv
         uses: astral-sh/setup-uv@v7
diff --git a/.github/workflows/pypi-publish.yml b/.github/workflows/pypi-publish.yml
index abe26e4..968cb95 100644
--- a/.github/workflows/pypi-publish.yml
+++ b/.github/workflows/pypi-publish.yml
@@ -15,7 +15,7 @@ jobs:
       id-token: write # IMPORTANT: this permission is mandatory for trusted publishing
     steps:
       - name: Check out repository
-        uses: actions/checkout@v6
+        uses: actions/checkout@v7
 
       - name: Set up UV
         uses: astral-sh/setup-uv@v7
diff --git a/.github/workflows/python-package.yml b/.github/workflows/python-package.yml
index dce6b31..6928d66 100644
--- a/.github/workflows/python-package.yml
+++ b/.github/workflows/python-package.yml
@@ -16,7 +16,7 @@ jobs:
         python-version: ["3.10", "3.11", "3.12", "3.13", "3.14"]
 
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
       - name: Setup uv
         uses: astral-sh/setup-uv@v7
diff --git a/.github/workflows/validate.yaml b/.github/workflows/validate.yaml
index b902221..85e80d5 100644
--- a/.github/workflows/validate.yaml
+++ b/.github/workflows/validate.yaml
@@ -12,7 +12,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v6
+        uses: actions/checkout@v7
 
       - name: Ruff Check
         uses: astral-sh/ruff-action@v3