diff --git a/.github/workflows/alert-failed-test.yml b/.github/workflows/alert-failed-test.yml
index 90e7ef6371d1a..d251a115ec86d 100644
--- a/.github/workflows/alert-failed-test.yml
+++ b/.github/workflows/alert-failed-test.yml
@@ -11,7 +11,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout kibana-operations
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           repository: 'elastic/kibana-operations'
           ref: main
diff --git a/.github/workflows/codeql-stats.yml b/.github/workflows/codeql-stats.yml
index e6b10f028dffc..df99b9a47c631 100644
--- a/.github/workflows/codeql-stats.yml
+++ b/.github/workflows/codeql-stats.yml
@@ -11,7 +11,7 @@ jobs:
     if: github.repository == 'elastic/kibana' # Hack: Do not run on forks
     steps:
     - name: Checkout kibana-operations
-      uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       with:
         repository: 'elastic/kibana-operations'
         ref: main
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index ea18312df3cc8..a6312dbf63ac8 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -22,7 +22,7 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       with:
         ref: ${{ matrix.branch }}
 
@@ -66,7 +66,7 @@ jobs:
     if: github.repository == 'elastic/kibana' # Hack: Do not run on forks
     steps:
     - name: Checkout kibana-operations
-      uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       with:
         repository: 'elastic/kibana-operations'
         ref: main
diff --git a/.github/workflows/label-failed-test.yml b/.github/workflows/label-failed-test.yml
index b3732eff3b2e5..5a066ac5dcfe3 100644
--- a/.github/workflows/label-failed-test.yml
+++ b/.github/workflows/label-failed-test.yml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout kibana-operations
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           repository: 'elastic/kibana-operations'
           ref: main
diff --git a/.github/workflows/launchdarkly-code-references.yml b/.github/workflows/launchdarkly-code-references.yml
index 23b877ce40d06..70acb7fe7d75f 100644
--- a/.github/workflows/launchdarkly-code-references.yml
+++ b/.github/workflows/launchdarkly-code-references.yml
@@ -11,7 +11,7 @@ jobs:
     if: github.event.repository.fork == false
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 11 # This value must be set if the lookback configuration option is not disabled for find-code-references. Read more: https://github.com/launchdarkly/ld-find-code-refs#searching-for-unused-flags-extinctions
       - name: LaunchDarkly Code References
diff --git a/.github/workflows/on-merge.yml b/.github/workflows/on-merge.yml
index 7ab6aa106d7f6..36985c31bbf0d 100644
--- a/.github/workflows/on-merge.yml
+++ b/.github/workflows/on-merge.yml
@@ -29,7 +29,7 @@ jobs:
               contains(github.event.pull_request.labels.*.name, 'auto-backport'))))
     steps:
       - name: Checkout Actions
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           repository: 'elastic/kibana-github-actions'
           ref: main
diff --git a/.github/workflows/skip-failed-test.yml b/.github/workflows/skip-failed-test.yml
index 46c569aeeef08..04ecd87aa2ac0 100644
--- a/.github/workflows/skip-failed-test.yml
+++ b/.github/workflows/skip-failed-test.yml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout Actions
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           repository: 'elastic/kibana-github-actions'
           ref: main
@@ -30,7 +30,7 @@ jobs:
           token: ${{secrets.KIBANAMACHINE_TOKEN}}
 
       - name: Checkout kibana-operations
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           repository: 'elastic/kibana-operations'
           ref: main
diff --git a/.github/workflows/updatecli-compose.yml b/.github/workflows/updatecli-compose.yml
index 44a937db3fa6d..2cea60f627af0 100644
--- a/.github/workflows/updatecli-compose.yml
+++ b/.github/workflows/updatecli-compose.yml
@@ -18,7 +18,7 @@ jobs:
       packages: read
       pull-requests: write
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0
         with: