diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index 9237bfa..7beb920 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -19,9 +19,10 @@ jobs:
        include:
          - os: 'ubuntu-20.04'
          - os: 'ubuntu-22.04'
+         - os: 'ubuntu-24.04'
          - os: 'windows-latest'
     steps:
-    - uses: actions/checkout@v3
+    - uses: taiki-e/checkout-action@v1
 
     - name: "Build and test (ubuntu)"
       run: |
@@ -51,8 +52,20 @@ jobs:
           - perlimage: 5.18.4-buster
           - perlimage: 5.22.4-stretch
           - perlimage: 5.36.0-slim-bullseye
+          - perlimage: 5.40.0-slim-bookworm
     steps:
-    - uses: actions/checkout@v3
+    - name: apt hacks
+      run: |
+        set -e
+        CODENAME=$(perl -nle '/^VERSION_CODENAME="?([^"]+)/ and $codename=$1; /^VERSION="\d+ \((.*)\)/ and $maybe_codename=$1; END { print $codename || $maybe_codename }' /etc/os-release)
+        case "$CODENAME" in
+          wheezy|jessie|stretch)
+            echo "APT::Get::AllowUnauthenticated 1;" > /etc/apt/apt.conf.d/02allow-unsigned
+            echo "deb [check-valid-until=no] http://archive.debian.org/debian $CODENAME main"                   >  /etc/apt/sources.list
+            echo "deb [check-valid-until=no] http://archive.debian.org/debian-security/ $CODENAME/updates main" >> /etc/apt/sources.list
+            ;;
+        esac
+    - uses: taiki-e/checkout-action@v1
     - name: Build and test
       run: |
         set -e