diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index d0fd521..854ebfd 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -15,10 +15,10 @@ jobs:
         language: [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ]
 
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
       # Conditionally run actions based on files modified by PR, feature branch or pushed commits
-      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36
+      - uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d
         id: changes
         with:
           filters: |
@@ -101,7 +101,7 @@ jobs:
 
       - name: Upload test results
         if: steps.changes.outputs.src == 'true'
-        uses: actions/upload-artifact@v6
+        uses: actions/upload-artifact@v7
         with:
           name: ${{ matrix.language }}-test-results
           path: |
@@ -122,13 +122,13 @@ jobs:
     steps:
       - name: Check if compile-and-test job failed to complete, if so fail
         if: ${{ needs.compile-and-test.result == 'failure' }}
-        uses: actions/github-script@v8
+        uses: actions/github-script@v9
         with:
           script: |
             core.setFailed('Test run job failed')
 
       - name: Collect test results
-        uses: actions/download-artifact@v7
+        uses: actions/download-artifact@v8
 
       - name: Validate test results
         run: |
@@ -158,11 +158,11 @@ jobs:
         language: [ 'csharp', 'java' ]
 
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
         with:
           submodules: true
 
-      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36
+      - uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d
         id: changes
         with:
           filters: |
@@ -191,11 +191,11 @@ jobs:
         language: [ 'csharp', 'java' ]
 
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
         with:
           submodules: true
 
-      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36
+      - uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d
         id: changes
         with:
           filters: |
@@ -219,9 +219,9 @@ jobs:
     needs: compile-and-test
     
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
-      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36
+      - uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d
         id: changes
         with:
           filters: |
diff --git a/.github/workflows/hotspots.yml b/.github/workflows/hotspots.yml
index c3f8907..0bc2078 100644
--- a/.github/workflows/hotspots.yml
+++ b/.github/workflows/hotspots.yml
@@ -15,7 +15,7 @@ jobs:
       packages: write
     steps:
       - name: Checkout github/codeql
-        uses: actions/checkout@v6
+        uses: actions/checkout@v7
         with:
           path: codeql
           repository: github/codeql
@@ -23,7 +23,7 @@ jobs:
           fetch-depth: 0
 
       - name: Checkout github/codeql-community-packs
-        uses: actions/checkout@v6
+        uses: actions/checkout@v7
         with:
           path: codeql-community-packs
           repository: githubsecuritylab/codeql-community-packs
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
index 7a980e0..77c52e4 100644
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -20,7 +20,7 @@ jobs:
         language: ["cpp", "csharp", "go", "java", "javascript", "python", "ruby"] 
 
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
       - name: Check codeql-LANG-queries (src) pack
         id: check_version
@@ -63,7 +63,7 @@ jobs:
         language: ["cpp", "csharp", "go", "java", "javascript", "python", "ruby"] 
 
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
       - name: Check codeql-LANG-libs (lib) pack
         id: check_version
@@ -106,7 +106,7 @@ jobs:
         language: ["csharp", "java"]
 
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
       - name: Check codeql-LANG-extensions (ext) pack
         id: check_version
@@ -149,7 +149,7 @@ jobs:
         language: ["csharp", "java"]
 
     steps:
-      - uses: actions/checkout@v6
+      - uses: actions/checkout@v7
 
       - name: Check codeql-LANG-library-sources (ext-library-sources) pack
         id: check_version
diff --git a/.github/workflows/update-release.yml b/.github/workflows/update-release.yml
index cb3a7fc..8da5f84 100644
--- a/.github/workflows/update-release.yml
+++ b/.github/workflows/update-release.yml
@@ -19,23 +19,23 @@ jobs:
 
     steps:
       - name: "Checkout"
-        uses: actions/checkout@v6
+        uses: actions/checkout@v7
 
       - name: Get Token
         id: get_workflow_token
-        uses: actions/create-github-app-token@v2
+        uses: actions/create-github-app-token@v3
         with:
           app-id: ${{ secrets.SECLABS_APP_ID }}
           private-key: ${{ secrets.SECLABS_APP_KEY }}
 
       - name: "Patch Release Me"
-        uses: 42ByteLabs/patch-release-me@ef44b04c04fde87280adf14548664bfbcebba04d # 0.6.4
+        uses: 42ByteLabs/patch-release-me@04ea0a696abfc3cfbdfadb279bd9c9dd0b1652a2 # 0.6.6
         with:
           # Bump (patch)
           mode: ${{ inputs.mode }}
 
       - name: Create Pull Request
-        uses: peter-evans/create-pull-request@98357b18bf14b5342f975ff684046ec3b2a07725 # v8.0.0
+        uses: peter-evans/create-pull-request@5f6978faf089d4d20b00c7766989d076bb2fc7f1 # v8.1.1
         with:
           token: ${{ steps.get_workflow_token.outputs.token }}
           title: "Chore: Auto Update new Release"