diff --git a/.github/workflows/dependency-audit.yml b/.github/workflows/dependency-audit.yml
index a1503bc..e163279 100644
--- a/.github/workflows/dependency-audit.yml
+++ b/.github/workflows/dependency-audit.yml
@@ -16,7 +16,7 @@ jobs:
     name: Check for known vulnerabilities
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
       - uses: actions/setup-go@v6
         with:
@@ -32,7 +32,7 @@ jobs:
     name: Verify go.mod / go.sum are tidy
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
       - uses: actions/setup-go@v6
         with:
diff --git a/.github/workflows/go-test.yml b/.github/workflows/go-test.yml
index 2d0630b..6ec996d 100644
--- a/.github/workflows/go-test.yml
+++ b/.github/workflows/go-test.yml
@@ -13,7 +13,7 @@ jobs:
     name: Run all tests
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v6
+    - uses: actions/checkout@v7
 
     - uses: pnorton5432/setup-task@v1
       with:
@@ -43,7 +43,7 @@ jobs:
     name: Run golangci-lint
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
       - uses: actions/setup-go@v6
         with:
diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index ac4a2f8..7b890e9 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -20,5 +20,5 @@ jobs:
     container:
       image: returntocorp/semgrep
     steps:
-    - uses: actions/checkout@v6
+    - uses: actions/checkout@v7
     - run: semgrep ci