diff --git a/.github/workflows/merge-main.yml b/.github/workflows/merge-main.yml
index aaac7d8f..eedf50bc 100644
--- a/.github/workflows/merge-main.yml
+++ b/.github/workflows/merge-main.yml
@@ -22,7 +22,7 @@ jobs:
       contents: read
       security-events: write
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Initialize
         uses: github/codeql-action/init@v2
diff --git a/.github/workflows/pr-open.yml b/.github/workflows/pr-open.yml
index 7ec49ee5..5c202575 100644
--- a/.github/workflows/pr-open.yml
+++ b/.github/workflows/pr-open.yml
@@ -52,7 +52,7 @@ jobs:
             build_file: ./frontend/Dockerfile.app
             build_context: ./frontend
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - uses: bcgov-nr/action-builder-ghcr@v1.1.2
         with:
           package: ${{ matrix.package }}
diff --git a/.github/workflows/unit-tests.yml b/.github/workflows/unit-tests.yml
index a95d2ace..52218314 100644
--- a/.github/workflows/unit-tests.yml
+++ b/.github/workflows/unit-tests.yml
@@ -48,7 +48,7 @@ jobs:
     if: github.event_name != 'pull_request' || !github.event.pull_request.draft
     runs-on: ubuntu-22.04
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Run Trivy vulnerability scanner in repo mode
         uses: aquasecurity/trivy-action@0.11.2