diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 4c9b138e..ab3d2cff 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -16,7 +16,7 @@ jobs:
       contents: write
 
     steps:
-    - uses: actions/checkout@v4
+    - uses: actions/checkout@v5
     - uses: actions/setup-java@v4
       with:
         distribution: 'temurin'
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index fb6f049b..ee22719d 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -19,7 +19,7 @@ jobs:
       # Output logs to file in case we need to inspect errors.
       GITSIGN_LOG: "/tmp/gitsign.log"
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
         with:
           token: ${{ secrets.RHACS_BOT_GITHUB_TOKEN }}
       - uses: chainguard-dev/actions/setup-gitsign@main
diff --git a/.github/workflows/tests.yaml b/.github/workflows/tests.yaml
index 7d5bd781..54e9829b 100644
--- a/.github/workflows/tests.yaml
+++ b/.github/workflows/tests.yaml
@@ -14,7 +14,7 @@ jobs:
   build:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - uses: actions/setup-java@v4
         with:
           distribution: 'temurin'
@@ -41,7 +41,7 @@ jobs:
         run: cd stackrox-container-image-scanner && ./mvnw hpi:run -Djetty.port=8080 &
       - name: Create k8s Kind Cluster
         uses: helm/kind-action@v1
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
         with:
           repository: stackrox/stackrox
           path: stackrox