diff --git a/.github/workflows/checks-and-linters.yml b/.github/workflows/checks-and-linters.yml
index 413e515..4cd10ea 100644
--- a/.github/workflows/checks-and-linters.yml
+++ b/.github/workflows/checks-and-linters.yml
@@ -23,7 +23,7 @@ jobs:
         python-version: ["3.12"]
 
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           ref: ${{ github.head_ref }}
 
@@ -84,7 +84,7 @@ jobs:
         python-version: ["3.12"]
 
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           ref: ${{ github.head_ref }}
           fetch-depth: 0
@@ -127,7 +127,7 @@ jobs:
 
     steps:
 
-    - uses: actions/checkout@v5
+    - uses: actions/checkout@v6
       with:
         ref: ${{ github.head_ref }}
         fetch-depth: 0
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index cc3402a..3506ccd 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -60,7 +60,7 @@ jobs:
         # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v5
+      uses: actions/checkout@v6
 
     # Add any setup steps before running the `github/codeql-action/init` action.
     # This includes steps like installing compilers or runtimes (`actions/setup-node`
diff --git a/.github/workflows/conda-lock-update.yml b/.github/workflows/conda-lock-update.yml
index 777c395..0e00872 100644
--- a/.github/workflows/conda-lock-update.yml
+++ b/.github/workflows/conda-lock-update.yml
@@ -21,7 +21,7 @@ jobs:
 
     steps:
       - name: Checkout full history
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
@@ -61,7 +61,7 @@ jobs:
           conda devenv --lock
 
       - name: Create the PR pushing the changes
-        uses: peter-evans/create-pull-request@271a8d0340265f705b14b6d32b9829c1cb33d45e
+        uses: peter-evans/create-pull-request@84ae59a2cdc2258d6fa0732dd66352dddae2a412
         if: ${{ success() && steps.update_locks.outcome == 'success' }}
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/create-tags.yml b/.github/workflows/create-tags.yml
index ced5d9e..ed66cf2 100644
--- a/.github/workflows/create-tags.yml
+++ b/.github/workflows/create-tags.yml
@@ -18,7 +18,7 @@ jobs:
 
     steps:
       - name: Checkout full history
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/pre-commit-autoupdate.yml b/.github/workflows/pre-commit-autoupdate.yml
index 52b2a73..af758f1 100644
--- a/.github/workflows/pre-commit-autoupdate.yml
+++ b/.github/workflows/pre-commit-autoupdate.yml
@@ -15,7 +15,7 @@ jobs:
 
     steps:
       - name: Checkout full history
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
@@ -40,7 +40,7 @@ jobs:
           pre-commit autoupdate
 
       - name: Create the PR pushing the changes
-        uses: peter-evans/create-pull-request@271a8d0340265f705b14b6d32b9829c1cb33d45e
+        uses: peter-evans/create-pull-request@84ae59a2cdc2258d6fa0732dd66352dddae2a412
         if: always()
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/publish-docs.yml b/.github/workflows/publish-docs.yml
index 96baeb6..14b81eb 100644
--- a/.github/workflows/publish-docs.yml
+++ b/.github/workflows/publish-docs.yml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout main
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Deploy docs
         uses: mhausenblas/mkdocs-deploy-gh-pages@master
diff --git a/.github/workflows/pypi-release.yml b/.github/workflows/pypi-release.yml
index ba51f48..61be5b9 100644
--- a/.github/workflows/pypi-release.yml
+++ b/.github/workflows/pypi-release.yml
@@ -22,7 +22,7 @@ jobs:
       # For a "real" release, consider this approach. Review SERVER value defined in the workflow env.
 
     - name: Check out code
-      uses: actions/checkout@v5
+      uses: actions/checkout@v6
       with:
         fetch-depth: 0      # so tags/history are available
 
diff --git a/.github/workflows/tests-conda.yml b/.github/workflows/tests-conda.yml
index f78603d..0ac2a90 100644
--- a/.github/workflows/tests-conda.yml
+++ b/.github/workflows/tests-conda.yml
@@ -39,7 +39,7 @@ jobs:
         python-version: ["3.11", "3.12"]
 
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/tests-venv.yml b/.github/workflows/tests-venv.yml
index a88fba1..9579685 100644
--- a/.github/workflows/tests-venv.yml
+++ b/.github/workflows/tests-venv.yml
@@ -36,7 +36,7 @@ jobs:
         python-version: ["3.11", "3.12"]
 
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0