diff --git a/.github/workflows/check-pull-request.yml b/.github/workflows/check-pull-request.yml
index bce5f13da..d7816f223 100644
--- a/.github/workflows/check-pull-request.yml
+++ b/.github/workflows/check-pull-request.yml
@@ -176,7 +176,7 @@ jobs:
 
       - name: Save test coverage
         if: ${{ always() }}
-        uses: actions/upload-artifact@v6
+        uses: actions/upload-artifact@v7
         with:
           name: ${{ matrix.task.description }} coverage
           path: coverage
@@ -203,7 +203,7 @@ jobs:
           path: coverage
 
       - name: SonarCloud Scan
-        uses: SonarSource/sonarqube-scan-action@v7
+        uses: SonarSource/sonarqube-scan-action@v8
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
diff --git a/.github/workflows/pr-notifier.yml b/.github/workflows/pr-notifier.yml
index 76f6b8e16..108116782 100644
--- a/.github/workflows/pr-notifier.yml
+++ b/.github/workflows/pr-notifier.yml
@@ -50,7 +50,7 @@ jobs:
 
     steps:
       - name: Build Slack JSON
-        uses: actions/github-script@v8
+        uses: actions/github-script@v9
         id: payload
         if: github.event.action != 'submitted' || github.event.review.state == 'approved'
 
@@ -89,7 +89,7 @@ jobs:
             }
 
       - name: Post to Slack
-        uses: slackapi/slack-github-action@v2.1.1
+        uses: slackapi/slack-github-action@v3.0.3
         if: github.event.action != 'submitted' || github.event.review.state == 'approved'
 
         with:
diff --git a/.github/workflows/publish-hotfix.yml b/.github/workflows/publish-hotfix.yml
index 6f4f9c8c5..2b3075fd0 100644
--- a/.github/workflows/publish-hotfix.yml
+++ b/.github/workflows/publish-hotfix.yml
@@ -34,7 +34,7 @@ jobs:
     runs-on: ubuntu-24.04
     steps:
       - name: Check out code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0 # Depth 0 is required for branch-based versioning