diff --git a/.github/workflows/phase_1_keycloak.yml b/.github/workflows/phase_1_keycloak.yml
index 6377018..cf286e8 100644
--- a/.github/workflows/phase_1_keycloak.yml
+++ b/.github/workflows/phase_1_keycloak.yml
@@ -65,7 +65,7 @@ jobs:
     needs: Generate
     steps:
 
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download all workflow run artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
@@ -131,7 +131,7 @@ jobs:
     needs: Augment
     steps:
 
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download all workflow run artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
@@ -184,7 +184,7 @@ jobs:
     needs: Enrich
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download SBOMs
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
diff --git a/.github/workflows/phase_1_python.yml b/.github/workflows/phase_1_python.yml
index 3dc7a1d..76b670f 100644
--- a/.github/workflows/phase_1_python.yml
+++ b/.github/workflows/phase_1_python.yml
@@ -20,7 +20,7 @@ jobs:
     name: "Generate Container SBOM"
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       # We're using native docker build here rather
       # than 'docker/build-push-action' to make the run
@@ -68,7 +68,7 @@ jobs:
     name: "Generate Application SBOM"
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Install Trivy
         run: |
@@ -111,7 +111,7 @@ jobs:
     needs: [Generate_Container, Generate_Application]
     steps:
 
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download all workflow run artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
@@ -222,7 +222,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [Augment]
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download all workflow run artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
@@ -259,7 +259,7 @@ jobs:
     needs: Enrich
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download SBOMs
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
diff --git a/.github/workflows/phase_2_harbor.yml b/.github/workflows/phase_2_harbor.yml
index c334f55..bada517 100644
--- a/.github/workflows/phase_2_harbor.yml
+++ b/.github/workflows/phase_2_harbor.yml
@@ -72,7 +72,7 @@ jobs:
     needs: Generate
     steps:
 
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download all workflow run artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
@@ -141,7 +141,7 @@ jobs:
     needs: Augment
     steps:
 
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
       - name: Enrich Download all workflow run artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
 
@@ -199,7 +199,7 @@ jobs:
     needs: Enrich
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download SBOMs
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
diff --git a/.github/workflows/phase_2_kubectl.yml b/.github/workflows/phase_2_kubectl.yml
index c7db56e..07979f4 100644
--- a/.github/workflows/phase_2_kubectl.yml
+++ b/.github/workflows/phase_2_kubectl.yml
@@ -65,7 +65,7 @@ jobs:
     needs: Generate
     steps:
 
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download all workflow run artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
@@ -131,7 +131,7 @@ jobs:
     needs: Augment
     steps:
 
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download all workflow run artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
@@ -184,7 +184,7 @@ jobs:
     needs: Enrich
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download SBOMs
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
diff --git a/.github/workflows/phase_3_yocto.yml b/.github/workflows/phase_3_yocto.yml
index 1765961..ba149a3 100644
--- a/.github/workflows/phase_3_yocto.yml
+++ b/.github/workflows/phase_3_yocto.yml
@@ -47,7 +47,7 @@ jobs:
     needs: Generate
     steps:
 
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download all workflow run artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
@@ -67,7 +67,7 @@ jobs:
     needs: Augment
     steps:
 
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download all workflow run artifacts
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
@@ -86,7 +86,7 @@ jobs:
     needs: Enrich
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4
 
       - name: Download SBOMs
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index 8fa11c1..4b6db14 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -32,7 +32,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with:
           persist-credentials: false