diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 68834a38..3dee30be 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -46,7 +46,7 @@ jobs:
           egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
 
       - name: Checkout repository
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v3.5.2
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v3.5.2
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
diff --git a/.github/workflows/pull_request.yaml b/.github/workflows/pull_request.yaml
index 75bfc1c2..f5f2d8cc 100644
--- a/.github/workflows/pull_request.yaml
+++ b/.github/workflows/pull_request.yaml
@@ -26,7 +26,7 @@ jobs:
         with:
           egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
 
-      - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v3.5.2
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v3.5.2
 
       - name: Buildah Action
         id: build_image
diff --git a/.github/workflows/push_to_main.yaml b/.github/workflows/push_to_main.yaml
index e9bc96bc..cf10a9dd 100644
--- a/.github/workflows/push_to_main.yaml
+++ b/.github/workflows/push_to_main.yaml
@@ -27,7 +27,7 @@ jobs:
       with:
         egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
 
-    - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v3.5.2
+    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v3.5.2
 
     - name: Buildah Action
       id: build_image
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index 00dc8d31..8976daab 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -37,7 +37,7 @@ jobs:
           egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
 
       - name: "Checkout code"
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/tag_release.yaml b/.github/workflows/tag_release.yaml
index 9c56a2d4..fa5038ea 100644
--- a/.github/workflows/tag_release.yaml
+++ b/.github/workflows/tag_release.yaml
@@ -27,7 +27,7 @@ jobs:
       with:
         egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
 
-    - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v3.5.2
+    - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v3.5.2
 
     - name: Buildah Action
       id: build_image