diff --git a/.github/workflows/_build.yml b/.github/workflows/_build.yml
index f89b062..2af2370 100644
--- a/.github/workflows/_build.yml
+++ b/.github/workflows/_build.yml
@@ -34,7 +34,7 @@ jobs:
           - svc_name: "incident-response/nginx"
             docker_file: "Dockerfile.nginx"
     steps:
-      - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # pin@v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@v3
 
       - name: set up docker buildx
         uses: docker/setup-buildx-action@edfb0fe6204400c56fbfd3feba3fe9ad1adfa345
diff --git a/.github/workflows/_deploy.yml b/.github/workflows/_deploy.yml
index 0c2d999..8bb053f 100644
--- a/.github/workflows/_deploy.yml
+++ b/.github/workflows/_deploy.yml
@@ -25,7 +25,7 @@ jobs:
   terraform_workflow:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # pin@v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@v3
 
       - uses: unfor19/install-aws-cli-action@46282f151073130d90347412d9c4ef0640177f22 # pin@v1.0.3
 
diff --git a/.github/workflows/workflow_path_to_live.yml b/.github/workflows/workflow_path_to_live.yml
index 09848c4..7bd96ac 100644
--- a/.github/workflows/workflow_path_to_live.yml
+++ b/.github/workflows/workflow_path_to_live.yml
@@ -33,7 +33,7 @@ jobs:
       parsed_branch: main
       version_tag: ${{ steps.semver_tag.outputs.created_tag }}
     steps:
-      - uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # pin@v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@v3
 
       - name: generate semver tag for release
         id: semver_tag
diff --git a/.github/workflows/workflow_pull_request_path.yml b/.github/workflows/workflow_pull_request_path.yml
index b1d97a6..ba024b9 100644
--- a/.github/workflows/workflow_pull_request_path.yml
+++ b/.github/workflows/workflow_pull_request_path.yml
@@ -33,7 +33,7 @@ jobs:
       parsed_branch: ${{ steps.branch_name.outputs.safe }}
       version_tag: ${{ steps.semver_tag.outputs.created_tag }}
     steps:
-      - uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # pin@v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@v3
 
       - name: generate safe branch name
         id: branch_name