diff --git a/.github/workflows/activity_metrics.yml b/.github/workflows/activity_metrics.yml
index 63a7e2dd0..4f13d8e61 100644
--- a/.github/workflows/activity_metrics.yml
+++ b/.github/workflows/activity_metrics.yml
@@ -23,7 +23,7 @@ jobs:
       wiki-repository-people_svg: metrics/plugin/people/wiki-repository.svg
       f-sy-h-repository-people_svg: metrics/plugin/people/f-sy-h-repository.svg
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
       - uses: lowlighter/metrics@65836723097537a54cd8eb90f61839426b4266b6
         with:
           filename: ${{ env.projects_svg }}
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 5d028f87a..45185dde4 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -59,7 +59,7 @@ jobs:
         # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v4
+      uses: actions/checkout@v6
 
     # Add any setup steps before running the `github/codeql-action/init` action.
     # This includes steps like installing compilers or runtimes (`actions/setup-node`
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
index af8f49a8d..e686ad467 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -14,7 +14,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: "⤵️ Check out code from GitHub"
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
       - name: "🏗 Dependency Review"
         uses: actions/dependency-review-action@da24556b548a50705dd671f47852072ea4c105d9
         with:
diff --git a/.github/workflows/gh-deploy-assets.yml b/.github/workflows/gh-deploy-assets.yml
index 67024d36b..58137ef79 100644
--- a/.github/workflows/gh-deploy-assets.yml
+++ b/.github/workflows/gh-deploy-assets.yml
@@ -19,7 +19,7 @@ jobs:
       contents: write
     steps:
       - name: "⤵️ Check out code from GitHub"
-        uses: actions/checkout@v4.2.2
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
       - name: "🚀 Deploy Profile to GitHub Pages"
diff --git a/.github/workflows/gh-push.yml b/.github/workflows/gh-push.yml
index 6fa7550f8..207a14bca 100644
--- a/.github/workflows/gh-push.yml
+++ b/.github/workflows/gh-push.yml
@@ -25,7 +25,7 @@ jobs:
       pages: write
     steps:
       - name: "⤵️ Check out code from GitHub"
-        uses: actions/checkout@v4.2.2
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
       - name: "🚀 Deploy Metrics to GitHub Pages"
diff --git a/.github/workflows/lychee.yml b/.github/workflows/lychee.yml
index 1d7c0f158..15d1067a0 100644
--- a/.github/workflows/lychee.yml
+++ b/.github/workflows/lychee.yml
@@ -27,7 +27,7 @@ jobs:
       group: ${{ github.workflow }}-${{ github.ref }}
       cancel-in-progress: true
     steps:
-      - uses: actions/checkout@v4.2.2
+      - uses: actions/checkout@v6
       - name: "📤 Restore cache"
         id: restore-cache
         uses: actions/cache/restore@v3
diff --git a/.github/workflows/metrics.yml b/.github/workflows/metrics.yml
index 7937c2e39..9cf9a79a6 100644
--- a/.github/workflows/metrics.yml
+++ b/.github/workflows/metrics.yml
@@ -25,7 +25,7 @@ jobs:
       wiki_followup_svg: metrics/plugin/followup/wiki_followup.svg
       f-sy-h_followup_svg: metrics/plugin/followup/f-sy-h_followup.svg
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
       - uses: lowlighter/metrics@65836723097537a54cd8eb90f61839426b4266b6
         with:
           filename: ${{ env.metrics_svg }}
diff --git a/.github/workflows/pages-deployment.yaml b/.github/workflows/pages-deployment.yaml
index 5c74ad55e..97e0679bc 100644
--- a/.github/workflows/pages-deployment.yaml
+++ b/.github/workflows/pages-deployment.yaml
@@ -19,7 +19,7 @@ jobs:
       cancel-in-progress: true
     steps:
       - name: "⤵️  Check out code from GitHub"
-        uses: actions/checkout@v4.2.2
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
       - name: "📦 Setup pnpm"
diff --git a/.github/workflows/reader.yml b/.github/workflows/reader.yml
index 24430212c..57b0142cb 100644
--- a/.github/workflows/reader.yml
+++ b/.github/workflows/reader.yml
@@ -25,7 +25,7 @@ jobs:
       dev_tag_zsh_svg: metrics/plugin/rss/dev.tag.zsh.rss.svg
       dev_tag_zsh_url: https://dev.to/feed/tag/zsh
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
       - uses: lowlighter/metrics@65836723097537a54cd8eb90f61839426b4266b6
         with:
           filename: ${{ env.zsh_activity_svg }}
diff --git a/.github/workflows/stars.yml b/.github/workflows/stars.yml
index a44c7b37a..cce7c07d9 100644
--- a/.github/workflows/stars.yml
+++ b/.github/workflows/stars.yml
@@ -9,7 +9,7 @@ jobs:
     runs-on: ubuntu-latest
     if: github.repository == 'z-shell/.github'
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
       - run: |
           echo -e "\nA :star: from [@${{github.actor}}](https://github.com/${{github.actor}})" >> .github/stars.md
       - uses: z-shell/.github/actions/commit@main
diff --git a/.github/workflows/trunk.yml b/.github/workflows/trunk.yml
index cdde6fb77..b26424916 100644
--- a/.github/workflows/trunk.yml
+++ b/.github/workflows/trunk.yml
@@ -86,7 +86,7 @@ jobs:
     runs-on: ${{ inputs.runs-on }}
     steps:
       - name: "⤵ Check out code from GitHub"
-        uses: actions/checkout@v4.2.2
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
       - if: ${{ inputs.get_dependencies }}
diff --git a/.github/workflows/welcome.yml b/.github/workflows/welcome.yml
index 9bbc887cd..6818d5a8a 100644
--- a/.github/workflows/welcome.yml
+++ b/.github/workflows/welcome.yml
@@ -15,7 +15,7 @@ jobs:
   welcome:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd
       - uses: EddieHubCommunity/gh-action-community/src/welcome@b0655168a4ac6fb03e3b649d943ad2c583900c35
         with:
           github-token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/zsh-n.yml b/.github/workflows/zsh-n.yml
index 0995718fd..b9b8b8fdf 100644
--- a/.github/workflows/zsh-n.yml
+++ b/.github/workflows/zsh-n.yml
@@ -20,7 +20,7 @@ jobs:
       matrix: ${{ steps.set-matrix.outputs.matrix }}
     steps:
       - name: ⤵️ Check out code from GitHub
-        uses: actions/checkout@v4.2.2
+        uses: actions/checkout@v6
       - name: "⚡ Set matrix output"
         id: set-matrix
         run: |
@@ -35,7 +35,7 @@ jobs:
       matrix: ${{ fromJSON(needs.zsh-matrix.outputs.matrix) }}
     steps:
       - name: ⤵️ Check out code from GitHub
-        uses: actions/checkout@v4.2.2
+        uses: actions/checkout@v6
       - name: "⚡ Install dependencies"
         run: sudo apt update && sudo apt-get install -yq zsh
       - name: "⚡ zsh -n: ${{ matrix.file }}"