diff --git a/.github/workflows/check-for-emails.yml b/.github/workflows/check-for-emails.yml
index e4f7b0fac2c..e3b4716fe74 100644
--- a/.github/workflows/check-for-emails.yml
+++ b/.github/workflows/check-for-emails.yml
@@ -10,7 +10,7 @@ jobs:
     name: Check for emails in issue comments
     steps:
     - name: Checkout
-      uses: actions/checkout@v6
+      uses: actions/checkout@v7
     - name: Scan comment
       id: scan
       uses: FlowCrypt/comment-email-address-alerts@v21
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 490970f8f61..7c2c37af283 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -28,7 +28,7 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v6
+      uses: actions/checkout@v7
       with:
         # We must fetch at least the immediate parents so that if this is
         # a pull request then we can checkout the head.
diff --git a/.github/workflows/eslint.yml b/.github/workflows/eslint.yml
index 29b8a1fca07..b834e6cf918 100644
--- a/.github/workflows/eslint.yml
+++ b/.github/workflows/eslint.yml
@@ -25,7 +25,7 @@ jobs:
       actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
     steps:
       - name: Checkout code
-        uses: actions/checkout@v6
+        uses: actions/checkout@v7
           # We must fetch at least the immediate parents so that if this is
           # a pull request then we can checkout the head.
         with: