diff --git a/.github/workflows/bad-pr-format.yaml b/.github/workflows/bad-pr-format.yaml
index 32920ff..6759ea2 100644
--- a/.github/workflows/bad-pr-format.yaml
+++ b/.github/workflows/bad-pr-format.yaml
@@ -13,7 +13,7 @@ jobs:
     if: (github.repository == 'llvm/llvm-project' || github.repository == 'intel/llvm') && !contains(github.event.pull_request.labels.*.name, 'disable-lint')
     steps:
       - name: Fetch LLVM sources
-        uses: actions/checkout@v4.1.5
+        uses: actions/checkout@v5
         with:
           ref: ${{ github.event.pull_request.head.sha }}
 
@@ -35,7 +35,7 @@ jobs:
       # PR for security reasons as we're using pull_request_target. Checkout
       # the target branch with the necessary files.
       - name: Fetch code formatting utils
-        uses: actions/checkout@v4.1.5
+        uses: actions/checkout@v5
         with:
           sparse-checkout: |
             llvm/utils/git/requirements_formatting.txt
diff --git a/.github/workflows/intel_scan.yaml b/.github/workflows/intel_scan.yaml
index 4a45320..dec194c 100644
--- a/.github/workflows/intel_scan.yaml
+++ b/.github/workflows/intel_scan.yaml
@@ -22,7 +22,7 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v4
+      uses: actions/checkout@v5
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index 72122cf..d5aaf6d 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -33,7 +33,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5
+        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
         with:
           persist-credentials: false