diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 1328c12..bffa35f 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -26,7 +26,7 @@ jobs:
 
         steps:
             - name: Checkout
-              uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9
+              uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac
 
             - name: Set up environment
               uses: ./.github/actions/setup
@@ -63,7 +63,7 @@ jobs:
 
         steps:
             - name: Checkout
-              uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9
+              uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac
 
             - name: Set up environment
               uses: ./.github/actions/setup
@@ -88,7 +88,7 @@ jobs:
 
         steps:
             - name: Checkout
-              uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9
+              uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac
 
             - name: Set up environment
               uses: ./.github/actions/setup
@@ -108,7 +108,7 @@ jobs:
 
         steps:
             - name: Checkout
-              uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9
+              uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac
 
             - name: Run SwiftLint
               run: swiftlint lint --reporter github-actions-logging
diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index 916745e..e65c192 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -18,7 +18,7 @@ jobs:
     # Skip any PR created by dependabot to avoid permission issues
     if: (github.actor != 'dependabot[bot]')
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac
 
       - run: semgrep ci
         env: