diff --git a/.github/workflows/check-secrets.yml b/.github/workflows/check-secrets.yml
index ea16b9e5..7036a616 100644
--- a/.github/workflows/check-secrets.yml
+++ b/.github/workflows/check-secrets.yml
@@ -34,7 +34,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Run secret scanner
         run: |
diff --git a/.github/workflows/ci-cd.yml b/.github/workflows/ci-cd.yml
index 20b3535c..5c9f2457 100644
--- a/.github/workflows/ci-cd.yml
+++ b/.github/workflows/ci-cd.yml
@@ -23,7 +23,7 @@ jobs:
     name: Backend (TypeScript Build)
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4.2.2
+      - uses: actions/checkout@v6
 
       - uses: actions/setup-node@v4.1.0
         with:
@@ -47,7 +47,7 @@ jobs:
     name: Frontend (Next.js Build)
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4.2.2
+      - uses: actions/checkout@v6
 
       - uses: actions/setup-node@v4.1.0
         with:
@@ -82,7 +82,7 @@ jobs:
     if: github.ref == 'refs/heads/main' && github.event_name == 'push'
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4.2.2
+      - uses: actions/checkout@v6
 
       - uses: actions/setup-node@v4.1.0
         with:
diff --git a/.github/workflows/copilot-review.yml b/.github/workflows/copilot-review.yml
index 109cc534..43ed4b74 100644
--- a/.github/workflows/copilot-review.yml
+++ b/.github/workflows/copilot-review.yml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/daily-blog.yml b/.github/workflows/daily-blog.yml
index d5990e1b..49d734c7 100644
--- a/.github/workflows/daily-blog.yml
+++ b/.github/workflows/daily-blog.yml
@@ -29,7 +29,7 @@ jobs:
 
       - name: Checkout repository
         if: steps.config.outputs.ready == 'true'
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           persist-credentials: true
       
diff --git a/.github/workflows/docker-backup.yml b/.github/workflows/docker-backup.yml
index b03d7658..25b2728c 100644
--- a/.github/workflows/docker-backup.yml
+++ b/.github/workflows/docker-backup.yml
@@ -12,7 +12,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v3
diff --git a/.github/workflows/secret-scanning.yml b/.github/workflows/secret-scanning.yml
index 110b37ac..ee0c8299 100644
--- a/.github/workflows/secret-scanning.yml
+++ b/.github/workflows/secret-scanning.yml
@@ -10,7 +10,7 @@ jobs:
   secrets-scan:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0   # gitleaks needs full history; shallow clone causes "stderr is not empty"
 
diff --git a/.github/workflows/soul-build.yml b/.github/workflows/soul-build.yml
index ff7780f6..ed08a8fe 100644
--- a/.github/workflows/soul-build.yml
+++ b/.github/workflows/soul-build.yml
@@ -20,7 +20,7 @@ jobs:
       packages: write
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - name: Log in to GHCR
         uses: docker/login-action@v3