diff --git a/.github/workflows/actionlint.yml b/.github/workflows/actionlint.yml
index 2458f899d9fa..03d5d45f4953 100644
--- a/.github/workflows/actionlint.yml
+++ b/.github/workflows/actionlint.yml
@@ -10,7 +10,7 @@ jobs:
   actionlint:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
         with:
           persist-credentials: false # Disable git write access
       - uses: docker://rhysd/actionlint:latest
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 9c3261db7bef..dfa3e6014c89 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -57,7 +57,7 @@ jobs:
         # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v4
+      uses: actions/checkout@v7
 
     # Add any setup steps before running the `github/codeql-action/init` action.
     # This includes steps like installing compilers or runtimes (`actions/setup-node`
diff --git a/.github/workflows/conversation.yml b/.github/workflows/conversation.yml
index 61165676784d..9f9c1d4eda2f 100644
--- a/.github/workflows/conversation.yml
+++ b/.github/workflows/conversation.yml
@@ -25,7 +25,7 @@ jobs:
               issue_number: context.payload.pull_request.number,
               labels: ['meta'],
             })
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
       - uses: fregante/keyword-formatter-action@v1
         with:
           token: ${{ github.token }}
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index fe5cf88839eb..fc9a0f1169fa 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -16,7 +16,7 @@ jobs:
       version: ${{ env.DAILY_VERSION }}
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
       - uses: actions/setup-node@v6
         with:
           node-version-file: package.json
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index bc988e0afa82..b54ff8881ed2 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -13,13 +13,13 @@ jobs:
   Security:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
       - run: npx lockfile-lint --path package-lock.json --validate-https
 
   Vitest:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
       - uses: actions/setup-node@v6
         with:
           node-version-file: package.json
@@ -38,7 +38,7 @@ jobs:
   Verify:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
       - uses: actions/setup-node@v6
         with:
           node-version-file: package.json
@@ -58,7 +58,7 @@ jobs:
   Lint:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
       - uses: actions/setup-node@v6
         with:
           node-version-file: package.json
@@ -75,7 +75,7 @@ jobs:
   Types:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
       - uses: actions/setup-node@v6
         with:
           node-version-file: package.json
@@ -88,7 +88,7 @@ jobs:
     permissions:
       contents: read
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
       - uses: actions/setup-node@v6
         with:
           node-version-file: package.json
@@ -104,7 +104,7 @@ jobs:
           - windows-latest
     runs-on: ${{ matrix.os }}
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
       - uses: actions/setup-node@v6
         with:
           node-version-file: package.json