diff --git a/.github/workflows/appscan-legacy.yml b/.github/workflows/appscan-legacy.yml
index 5369017..65c47ae 100644
--- a/.github/workflows/appscan-legacy.yml
+++ b/.github/workflows/appscan-legacy.yml
@@ -19,14 +19,14 @@ jobs:
     name: static analysis
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v4
       with:
         fetch-depth: 0
     - id: skills-network-bot-app
-      uses: getsentry/action-github-app-token@v1
+      uses: actions/create-github-app-token@v1
       with:
-        app_id: ${{ secrets.skills-network-bot-app-id }}
-        private_key: ${{ secrets.skills-network-bot-private-key }}
+        app-id: ${{ secrets.skills-network-bot-app-id }}
+        private-key: ${{ secrets.skills-network-bot-private-key }}
     - name: download SAST client
       run: |
         curl -sS https://cloud.appscan.com/api/SCX/StaticAnalyzer/SAClientUtil?os=linux -o /tmp/sast-client.zip
@@ -63,7 +63,7 @@ jobs:
               "AssetGroupId": "'"$ASOC_ASSET_GROUP_ID"'",
             }' | jq -r .Id)
         fi
-        echo "::set-output name=APPSCAN_APP_ID::$app_id"
+        echo "APPSCAN_APP_ID=$app_id" >> $GITHUB_OUTPUT
 
     - name: prepare and queue scan
       env:
diff --git a/.github/workflows/deploy-to-k8s.yml b/.github/workflows/deploy-to-k8s.yml
deleted file mode 100644
index 82259ca..0000000
--- a/.github/workflows/deploy-to-k8s.yml
+++ /dev/null
@@ -1,46 +0,0 @@
-name: 'Deploy to K8S'
-description: 'Setup environment to deploy to k8s with helmfile'
-inputs:
-  app-id:
-    required: true
-    description: 'Skills Network Bot App Id'
-  app-private-key:
-    required: true
-    description: "Skills Network Bot Private Key"
-  ibm-cloud-api-key:
-    required: true
-    description: "IBM Cloud Api Key"
-  ibm-cloud-region:
-    required: false
-    default: "us-south"
-    description: "IBM Cloud Region"
-  cluster-name:
-    required: true
-    description: "Target IBM Cloud Kubernetes Cluster Name"
-  gpg-private-key:
-    required: true
-    description: "GPG Private Key"
-outputs:
-  ghec-token:
-    description: "Organization-wide github access token"
-    value: ${{ steps.skills-network-bot-app.outputs.token }}
-runs:
-  using: "composite"
-  steps:
-    - id: skills-network-bot-app
-      uses: getsentry/action-github-app-token@v1
-      with:
-        app_id: ${{ inputs.app-id }}
-        private_key: ${{ inputs.app-private-key }}
-    - uses: ibm-skills-network/action-ibmcloud-cli@v1
-      with:
-        ibm-cloud-api-key: ${{ inputs.ibm-cloud-api-key }}
-        ibm-cloud-region: ${{ inputs.ibm-cloud-region }}
-        ibm-cloud-cli-plugins: container-service
-    - run: |
-        ibmcloud ks cluster config --cluster ${{ inputs.cluster-name }}
-      shell: bash
-    - uses: ibm-skills-network/action-helmfile@main
-    - uses: crazy-max/ghaction-import-gpg@v4
-      with:
-        gpg_private_key: ${{ inputs.gpg-private-key }}
diff --git a/.github/workflows/mirror-github-ibm.yml b/.github/workflows/mirror-github-ibm.yml
index e9b9ebf..a3fd873 100644
--- a/.github/workflows/mirror-github-ibm.yml
+++ b/.github/workflows/mirror-github-ibm.yml
@@ -13,7 +13,7 @@ jobs:
     name: mirror
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v4
       with:
         fetch-depth: 0
     - uses: pixta-dev/repository-mirroring-action@v1
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 9a71c38..22d73ba 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -89,10 +89,7 @@ jobs:
 
       - name: Get latest release tag
         id: latest-release
-        uses: fangqiuming/latest-release-version@v1.1.1
-        with:
-          repository: ${{ github.repository }}
-          token: ${{ github.token }}
+        uses: Lukacs5/action-latest-release-version@v2.0.0
         if: ${{ github.event_name == 'schedule' }}
 
         # base release is the release without any security patch suffix
@@ -101,7 +98,7 @@ jobs:
       - name: Get base release tag
         id: base-release
         run: |
-          echo "base-release=$(echo '${{ steps.latest-release.outputs.tag_name }}' | sed -r 's/(-[0-9]{8})$//')" >> $GITHUB_OUTPUT
+          echo "base-release=$(echo '${{ steps.latest-release.outputs.latest-release }}' | sed -r 's/(-[0-9]{8})$//')" >> $GITHUB_OUTPUT
 
       - name: print release tag
         run: |
diff --git a/.github/workflows/static-analysis.yml b/.github/workflows/static-analysis.yml
index 9be37cf..822ae22 100644
--- a/.github/workflows/static-analysis.yml
+++ b/.github/workflows/static-analysis.yml
@@ -14,16 +14,16 @@ jobs:
     name: static analysis
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v4
       with:
         fetch-depth: 0
     - id: skills-network-bot-app
-      uses: getsentry/action-github-app-token@v1
+      uses: actions/create-github-app-token@v1
       with:
-        app_id: ${{ secrets.skills-network-bot-app-id }}
-        private_key: ${{ secrets.skills-network-bot-private-key }}
+        app-id: ${{ secrets.skills-network-bot-app-id }}
+        private-key: ${{ secrets.skills-network-bot-private-key }}
     - name: HCL AppScan CodeSweep
-      uses: HCL-TECH-SOFTWARE/appscan-codesweep-action@v1
+      uses: HCL-TECH-SOFTWARE/appscan-codesweep-action@v2
       with:
         asoc_key: ${{ secrets.asoc-key }}
         asoc_secret: ${{ secrets.asoc-secret }}