diff --git a/.github/workflows/bicep-audit.yml b/.github/workflows/bicep-audit.yml
index 55eb0172..21789593 100644
--- a/.github/workflows/bicep-audit.yml
+++ b/.github/workflows/bicep-audit.yml
@@ -19,7 +19,7 @@ jobs:
       security-events: write
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
 
       - name: Run Microsoft Security DevOps Analysis
         uses: microsoft/security-devops-action@preview
diff --git a/.github/workflows/python-test.yaml b/.github/workflows/python-test.yaml
index 1c987872..b03f9a63 100644
--- a/.github/workflows/python-test.yaml
+++ b/.github/workflows/python-test.yaml
@@ -25,7 +25,7 @@ jobs:
         # needed because the postgres container does not provide a healthcheck
         options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5
     steps:
-        - uses: actions/checkout@v4
+        - uses: actions/checkout@v5
         - name: Setup python
           uses: actions/setup-python@v5
           with: