diff --git a/.github/workflows/aws-main.yml b/.github/workflows/aws-main.yml
index 9b65946d4..2971fed1c 100644
--- a/.github/workflows/aws-main.yml
+++ b/.github/workflows/aws-main.yml
@@ -296,7 +296,7 @@ jobs:
     if: always() && !failure() && !cancelled()
     needs: push
     steps:
-      - uses: geekyeggo/delete-artifact@v5
+      - uses: geekyeggo/delete-artifact@v6
         with:
           # delete the docker images shared within the jobs (storage on GitHub is expensive)
           name: |
diff --git a/.github/workflows/aws-tests-s3-image.yml b/.github/workflows/aws-tests-s3-image.yml
index 8af6dcc13..c7bdfed01 100644
--- a/.github/workflows/aws-tests-s3-image.yml
+++ b/.github/workflows/aws-tests-s3-image.yml
@@ -101,7 +101,7 @@ jobs:
           fetch-depth: 0
 
       - name: Login to Docker Hub
-        uses: docker/login-action@v3
+        uses: docker/login-action@v4
         # If this is triggered by a pull_request, make sure the PR head repo name is the same as the target repo name
         # (i.e. do not execute job for workflows coming from forks)
         if: >-
@@ -200,7 +200,7 @@ jobs:
       DEFAULT_TAG: "s3-latest"
     steps:
       - name: Login to Docker Hub
-        uses: docker/login-action@v3
+        uses: docker/login-action@v4
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_PASSWORD }}
@@ -262,7 +262,7 @@ jobs:
     if: success()
     needs: push-s3-image
     steps:
-      - uses: geekyeggo/delete-artifact@v5
+      - uses: geekyeggo/delete-artifact@v6
         with:
           name: localstack-s3-image-*
           failOnError: false
diff --git a/.github/workflows/aws-tests.yml b/.github/workflows/aws-tests.yml
index c47daa1c7..6ec73e286 100644
--- a/.github/workflows/aws-tests.yml
+++ b/.github/workflows/aws-tests.yml
@@ -260,7 +260,7 @@ jobs:
       # The test-selection file specifies which tests to run for each service,
       # while this step allows skipping entire jobs when no relevant services have changed
       - name: Determine services affected by change
-        uses: dorny/paths-filter@v3.0.2
+        uses: dorny/paths-filter@v4.0.1
         id: changes
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -364,7 +364,7 @@ jobs:
       - name: Login to Docker Hub
         # login to DockerHub to avoid rate limiting issues on custom runners
         if: github.repository_owner == 'localstack' && env.DOCKER_PULL_SECRET_AVAILABLE == 'true'
-        uses: docker/login-action@v3
+        uses: docker/login-action@v4
         with:
           username: ${{ secrets.DOCKERHUB_PULL_USERNAME }}
           password: ${{ secrets.DOCKERHUB_PULL_TOKEN }}
@@ -571,7 +571,7 @@ jobs:
       - name: Login to Docker Hub
         # login to DockerHub to avoid rate limiting issues on custom runners
         if: github.repository_owner == 'localstack' && env.DOCKER_PULL_SECRET_AVAILABLE == 'true'
-        uses: docker/login-action@v3
+        uses: docker/login-action@v4
         with:
           username: ${{ secrets.DOCKERHUB_PULL_USERNAME }}
           password: ${{ secrets.DOCKERHUB_PULL_TOKEN }}
@@ -922,7 +922,7 @@ jobs:
       - name: Login to Docker Hub
         # login to DockerHub to avoid rate limiting issues on custom runners
         if: github.repository_owner == 'localstack' && env.DOCKER_PULL_SECRET_AVAILABLE == 'true'
-        uses: docker/login-action@v3
+        uses: docker/login-action@v4
         with:
           username: ${{ secrets.DOCKERHUB_PULL_USERNAME }}
           password: ${{ secrets.DOCKERHUB_PULL_TOKEN }}