diff --git a/.github/workflows/code-quality.yml b/.github/workflows/code-quality.yml
index 39bab8b..b2b1845 100644
--- a/.github/workflows/code-quality.yml
+++ b/.github/workflows/code-quality.yml
@@ -37,7 +37,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
         with:
           # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action.
           persist-credentials: false
diff --git a/.github/workflows/composer-diff.yml b/.github/workflows/composer-diff.yml
index 8746c87..70379ba 100644
--- a/.github/workflows/composer-diff.yml
+++ b/.github/workflows/composer-diff.yml
@@ -23,7 +23,7 @@ jobs:
       pull-requests: write # needed for sticky-pull-request-comment to post/update PR comments
     steps:
       - name: Checkout repository
-        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
         with:
           fetch-depth: 0 # Required for IonBazan/composer-diff-action
           # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action.
diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
index 5875878..b249f28 100644
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -33,7 +33,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
         with:
           # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action.
           persist-credentials: false