diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 0be2e75b..47badfe1 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -21,7 +21,7 @@ jobs:
 
         steps:
             - name: Checkout
-              uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
+              uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f
 
             - name: Set up environment
               uses: ./.github/actions/setup
@@ -56,7 +56,7 @@ jobs:
 
         steps:
             - name: Checkout
-              uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
+              uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f
 
             - name: Set up environment
               uses: ./.github/actions/setup
@@ -76,7 +76,7 @@ jobs:
 
         steps:
             - name: Checkout
-              uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
+              uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f
 
             - name: Run SwiftLint
               run: swiftlint lint --reporter github-actions-logging
diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index aad546d7..8d46af42 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -18,7 +18,7 @@ jobs:
     # Skip any PR created by dependabot to avoid permission issues
     if: (github.actor != 'dependabot[bot]')
     steps:
-      - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
+      - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f
 
       - run: semgrep ci
         env: