diff --git a/.github/.OwlBot.lock.yaml b/.github/.OwlBot.lock.yaml
index 2a0311b..35d770e 100644
--- a/.github/.OwlBot.lock.yaml
+++ b/.github/.OwlBot.lock.yaml
@@ -13,5 +13,5 @@
 # limitations under the License.
 docker:
   image: gcr.io/cloud-devrel-public-resources/owlbot-nodejs:latest
-  digest: sha256:66c44f0ad8f6caaa4eb3fbe74f8c2b4de5a97c2b930cee069e712c447723ba95
-# created: 2025-07-08T20:57:17.642848562Z
+  digest: sha256:bb3dc6c75c5f3e1a8928474f2dc8d9bbfa7b809045515764b9ff48c070cf2321
+# created: 2025-11-03T16:03:37.116278509Z
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index ba80cb2..87f5007 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -11,8 +11,8 @@ jobs:
       matrix:
         node: [18, 20, 22, 24]
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-node@v4
+      - uses: actions/checkout@v5
+      - uses: actions/setup-node@v6
         with:
           node-version: ${{ matrix.node }}
       - run: node --version
@@ -29,8 +29,8 @@ jobs:
   test-script:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-node@v4
+      - uses: actions/checkout@v5
+      - uses: actions/setup-node@v6
         with:
           node-version: 18
       - run: node --version
@@ -43,8 +43,8 @@ jobs:
   windows:
     runs-on: windows-latest
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-node@v4
+      - uses: actions/checkout@v5
+      - uses: actions/setup-node@v6
         with:
           node-version: 18
       - run: npm install --engine-strict
@@ -54,8 +54,8 @@ jobs:
   lint:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-node@v4
+      - uses: actions/checkout@v5
+      - uses: actions/setup-node@v6
         with:
           node-version: 18
       - run: npm install
@@ -63,8 +63,8 @@ jobs:
   docs:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-node@v4
+      - uses: actions/checkout@v5
+      - uses: actions/setup-node@v6
         with:
           node-version: 18
       - run: npm install
diff --git a/.github/workflows/issues-no-repro.yaml b/.github/workflows/issues-no-repro.yaml
index 816d9a7..66ceadb 100644
--- a/.github/workflows/issues-no-repro.yaml
+++ b/.github/workflows/issues-no-repro.yaml
@@ -10,8 +10,8 @@ jobs:
       issues: write
       pull-requests: write
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-node@v4
+      - uses: actions/checkout@v5
+      - uses: actions/setup-node@v6
         with:
           node-version: 18
       - run: npm install
diff --git a/.kokoro/release/publish.cfg b/.kokoro/release/publish.cfg
index 1381bda..82aa67f 100644
--- a/.kokoro/release/publish.cfg
+++ b/.kokoro/release/publish.cfg
@@ -38,7 +38,7 @@ env_vars: {
     value: "github/retry-request/.kokoro/publish.sh"
 }
 
-# Store the packages we uploaded to npmjs.org and their corresponding
+# Store the packages we uploaded to npmjs.com and their corresponding
 # package-lock.jsons in Placer.  That way, we have a record of exactly
 # what we published, and which version of which tools we used to publish
 # it, which we can use to generate SBOMs and attestations.
diff --git a/renovate.json b/renovate.json
index c5c702c..f39fd32 100644
--- a/renovate.json
+++ b/renovate.json
@@ -15,6 +15,10 @@
     {
       "extends": "packages:linters",
       "groupName": "linters"
+    },
+    {
+      "matchManagers": ["github-actions"],
+      "enabled": false
     }
   ],
   "ignoreDeps": ["typescript"]