diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml
index 5fdd006..8c7345a 100644
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@@ -35,7 +35,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3.1.0
 
       # Install the cosign tool except on PR
       # https://github.com/sigstore/cosign-installer
diff --git a/.github/workflows/snyk-container-analysis.yml b/.github/workflows/snyk-container-analysis.yml
index 4038448..021ffae 100644
--- a/.github/workflows/snyk-container-analysis.yml
+++ b/.github/workflows/snyk-container-analysis.yml
@@ -26,7 +26,7 @@ jobs:
   snyk:
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v3.1.0
     - name: Build a Docker image
       run: docker build -t dragontek/wintercms .
     - name: Run Snyk to check Docker image for vulnerabilities