diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 0bd60d0..e550a94 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -57,7 +57,7 @@ jobs:
         # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v4
+      uses: actions/checkout@v6
 
     # Add any setup steps before running the `github/codeql-action/init` action.
     # This includes steps like installing compilers or runtimes (`actions/setup-node`
diff --git a/.github/workflows/docker-build.yml b/.github/workflows/docker-build.yml
old mode 100755
new mode 100644
index f764050..8561907
--- a/.github/workflows/docker-build.yml
+++ b/.github/workflows/docker-build.yml
@@ -26,7 +26,7 @@ jobs:
       hub_digest: ${{ steps.hub.outputs.digest }}
       su_digest:  ${{ steps.su.outputs.digest }}
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with: { submodules: recursive, fetch-depth: 0 }
       - uses: docker/setup-buildx-action@v3
 
@@ -111,7 +111,7 @@ jobs:
       hub_digest: ${{ steps.hub.outputs.digest }}
       su_digest:  ${{ steps.su.outputs.digest }}
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with: { submodules: recursive, fetch-depth: 0 }
       - uses: docker/setup-buildx-action@v3
 
@@ -193,7 +193,7 @@ jobs:
     runs-on: ubuntu-22.04
     if: ${{ github.event_name != 'pull_request' }}
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with: { submodules: recursive, fetch-depth: 0 }
       - uses: docker/setup-buildx-action@v3