diff --git a/.github/workflows/monorepo.yml b/.github/workflows/monorepo.yml
index 570012b8..2e186b24 100644
--- a/.github/workflows/monorepo.yml
+++ b/.github/workflows/monorepo.yml
@@ -26,7 +26,7 @@ jobs:
          && github.event.action == 'closed'
          && github.event.pull_request.merged == true }}
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           persist-credentials: true
           fetch-depth: 0
@@ -130,7 +130,7 @@ jobs:
       max-parallel: 1
     steps:
     - name: Checkout repository to use composite action
-      uses: actions/checkout@v5
+      uses: actions/checkout@v6
       with:
         ref: main # Only use composite action from main to prevent malicious PRs
         persist-credentials: false
diff --git a/.github/workflows/zizmor.yaml b/.github/workflows/zizmor.yaml
index 6b3b4e93..e735750b 100644
--- a/.github/workflows/zizmor.yaml
+++ b/.github/workflows/zizmor.yaml
@@ -19,7 +19,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Clone Repository
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           persist-credentials: false