diff --git a/.github/workflows/development.yml b/.github/workflows/development.yml
index 06c03bb0..4dc16018 100644
--- a/.github/workflows/development.yml
+++ b/.github/workflows/development.yml
@@ -15,7 +15,6 @@ jobs:
         steps:
             - name: '☁️ checkout repository'
               uses: actions/checkout@v4
-              uses: actions/checkout@v4
 
             - name: '🔧 Setup Node.js'
               uses: actions/setup-node@v4
@@ -35,7 +34,6 @@ jobs:
         name: Build and test project
         needs: lint
         if: ${{ !contains(github.event.head_commit.message, 'skip ci') }}
-        if: ${{ !contains(github.event.head_commit.message, 'skip ci') }}
         runs-on: ubuntu-latest
         env:
             PG_USER: postgres
@@ -60,7 +58,6 @@ jobs:
 
             - name: '☁️ checkout repository'
               uses: actions/checkout@v4
-              uses: actions/checkout@v4
 
             - name: '🔧 Setup Node.js'
               uses: actions/setup-node@v4
diff --git a/.github/workflows/docker-release.yml b/.github/workflows/docker-release.yml
index f51d8894..9e8ae818 100644
--- a/.github/workflows/docker-release.yml
+++ b/.github/workflows/docker-release.yml
@@ -21,10 +21,6 @@ permissions:
       packages: write
       id-token: write
 
-permissions:
-      contents: read
-      packages: write
-      id-token: write
 
 env:
     # Use docker.io for Docker Hub if empty
@@ -46,7 +42,6 @@ jobs:
         steps:
             - name: '☁️ Checkout repository'
               uses: actions/checkout@v4
-              uses: actions/checkout@v4
 
             # Install the cosign tool except on PR
             # https://github.com/sigstore/cosign-installer
@@ -55,19 +50,16 @@ jobs:
               uses: sigstore/cosign-installer@main
               with:
                   cosign-release: 'v2.1.1'
-                  cosign-release: 'v2.1.1'
 
             # Workaround: https://github.com/docker/build-push-action/issues/461
             - name: '🔧 Setup Docker buildx'
               uses: docker/setup-buildx-action@2b51285047da1547ffb1b2203d8be4c0af6b1f20
-              uses: docker/setup-buildx-action@2b51285047da1547ffb1b2203d8be4c0af6b1f20
 
             # Login against a Docker registry except on PR
             # https://github.com/docker/login-action
             - name: '🔐 Log into registry ${{ env.REGISTRY }}'
               if: github.event_name != 'pull_request'
               uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20
-              uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20
               with:
                   registry: ${{ env.REGISTRY }}
                   username: ${{ github.actor }}
@@ -103,10 +95,6 @@ jobs:
                   # COSIGN_EXPERIMENTAL: 'true'
                   TAGS: ${{ steps.meta.outputs.tags }}
                   DIGEST: ${{ steps.build-and-push.outputs.digest }}
-                  # COSIGN_EXPERIMENTAL: 'true'
-                  TAGS: ${{ steps.meta.outputs.tags }}
-                  DIGEST: ${{ steps.build-and-push.outputs.digest }}
               # This step uses the identity token to provision an ephemeral certificate
               # against the sigstore community Fulcio instance.
               run: cosign sign --yes "${TAGS}@${DIGEST}"
-              run: cosign sign --yes "${TAGS}@${DIGEST}"
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 71af4da0..232921d6 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -31,7 +31,6 @@ jobs:
             #       private_key: ${{ secrets.APP_PRIVATE_KEY }}
 
             - name: '☁️ Checkout repository'
-              uses: actions/checkout@v4
               uses: actions/checkout@v4
               with:
                   fetch-depth: 0