diff --git a/.github/workflows/renovate.yaml b/.github/workflows/renovate.yaml
index f0807bf7..f80d832b 100644
--- a/.github/workflows/renovate.yaml
+++ b/.github/workflows/renovate.yaml
@@ -50,7 +50,7 @@ jobs:
           private-key: "${{ secrets.BOT_JWT_PRIVATE_KEY }}" # $BOT_JWT_PRIVATE_KEY is generated in GitHub App main settings page, uses the X.509 private key format
 
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
         with:
           token: "${{ steps.oauth-token.outputs.token }}"
 
diff --git a/.github/workflows/vyos-build.yaml b/.github/workflows/vyos-build.yaml
index 1b58e2ef..ece36cfc 100644
--- a/.github/workflows/vyos-build.yaml
+++ b/.github/workflows/vyos-build.yaml
@@ -65,7 +65,7 @@ jobs:
           private-key: "${{ secrets.BOT_JWT_PRIVATE_KEY }}" # $BOT_JWT_PRIVATE_KEY is generated in GitHub App main settings page, uses the X.509 private key format
 
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
         with:
           token: "${{ steps.oauth-token.outputs.token }}"