diff --git a/.github/workflows/fe-build.yml b/.github/workflows/fe-build.yml
index dcf8d9e..d17a0aa 100644
--- a/.github/workflows/fe-build.yml
+++ b/.github/workflows/fe-build.yml
@@ -26,7 +26,7 @@ jobs:
           ram_size_kb=$(grep MemTotal /proc/meminfo | awk '{print $2}')
           ram_size_gb=$(echo "scale=2; $ram_size_kb/1024/1024" | bc)
           echo "Total RAM size: $ram_size_gb GB"
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-check-upmerge.yml b/.github/workflows/fe-check-upmerge.yml
index 0674165..c059dfc 100644
--- a/.github/workflows/fe-check-upmerge.yml
+++ b/.github/workflows/fe-check-upmerge.yml
@@ -15,7 +15,7 @@ jobs:
     name: Run Upmerge Flow
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-cleanup-snapshots.yml b/.github/workflows/fe-cleanup-snapshots.yml
index 22a8a3c..9cafcb0 100644
--- a/.github/workflows/fe-cleanup-snapshots.yml
+++ b/.github/workflows/fe-cleanup-snapshots.yml
@@ -17,7 +17,7 @@ jobs:
     name: Cleanup Snapshot Artifacts
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-code-quality.yml b/.github/workflows/fe-code-quality.yml
index c103537..f69d666 100644
--- a/.github/workflows/fe-code-quality.yml
+++ b/.github/workflows/fe-code-quality.yml
@@ -39,7 +39,7 @@ jobs:
       jobCount: 4
       coverageEnabled: ${{ secrets.SONAR_CLOUD_TOKEN != '' }}
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ github.event.pull_request.head.ref }}
           fetch-depth: 0
@@ -122,7 +122,7 @@ jobs:
           fi
 
       - name: Checkout
-        uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+        uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           fetch-depth: 0
 
@@ -177,6 +177,6 @@ jobs:
           fi
 
       - name: SonarQube Scan
-        uses: SonarSource/sonarqube-scan-action@7006c4492b2e0ee0f816d36501671557c97f5995 # v8.1.0
+        uses: SonarSource/sonarqube-scan-action@713881670b6b3676cda39549040e2d88c70d582e # v8.2.0
         env:
           SONAR_TOKEN: ${{ secrets.SONAR_CLOUD_TOKEN }}
diff --git a/.github/workflows/fe-e2e.yml b/.github/workflows/fe-e2e.yml
index ffd1ca5..635e6ed 100644
--- a/.github/workflows/fe-e2e.yml
+++ b/.github/workflows/fe-e2e.yml
@@ -27,7 +27,7 @@ jobs:
     env:
       jobCount: 4
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-install-deps.yml b/.github/workflows/fe-install-deps.yml
index f24bcef..8703eb9 100644
--- a/.github/workflows/fe-install-deps.yml
+++ b/.github/workflows/fe-install-deps.yml
@@ -17,7 +17,7 @@ jobs:
       group: fe-install-deps-${{ github.ref }}
       cancel-in-progress: true
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-licenses.yml b/.github/workflows/fe-licenses.yml
index 021d13a..e8ced7d 100644
--- a/.github/workflows/fe-licenses.yml
+++ b/.github/workflows/fe-licenses.yml
@@ -20,7 +20,7 @@ jobs:
       group: fe-licenses-${{ github.ref }}
       cancel-in-progress: true
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ github.event.pull_request.head.ref }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-pr-close.yml b/.github/workflows/fe-pr-close.yml
index cb5c63e..1465cdc 100644
--- a/.github/workflows/fe-pr-close.yml
+++ b/.github/workflows/fe-pr-close.yml
@@ -20,7 +20,7 @@ jobs:
   remove-artifacts:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ github.event.pull_request.head.sha }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-pr-snapshot.yml b/.github/workflows/fe-pr-snapshot.yml
index d233fc8..8dce7fe 100644
--- a/.github/workflows/fe-pr-snapshot.yml
+++ b/.github/workflows/fe-pr-snapshot.yml
@@ -23,7 +23,7 @@ jobs:
     env:
       NODE_OPTIONS: --max-old-space-size=4096
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ github.event.pull_request.head.ref }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-release.yml b/.github/workflows/fe-release.yml
index b9baf90..1121388 100644
--- a/.github/workflows/fe-release.yml
+++ b/.github/workflows/fe-release.yml
@@ -20,7 +20,7 @@ jobs:
   release-version:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ''
           fetch-depth: 0
diff --git a/.github/workflows/fe-snapshot.yml b/.github/workflows/fe-snapshot.yml
index 627a3be..c5f5616 100644
--- a/.github/workflows/fe-snapshot.yml
+++ b/.github/workflows/fe-snapshot.yml
@@ -25,7 +25,7 @@ jobs:
     env:
       NODE_OPTIONS: --max-old-space-size=4096
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-sonar.yml b/.github/workflows/fe-sonar.yml
index 59fe86b..f122ddf 100644
--- a/.github/workflows/fe-sonar.yml
+++ b/.github/workflows/fe-sonar.yml
@@ -37,7 +37,7 @@ jobs:
       contents: read
     steps:
       - name: Checkout repository
-        uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+        uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           fetch-depth: 0  # Full history for SonarQube analysis
 
@@ -126,6 +126,6 @@ jobs:
           cat sonar-project.properties
 
       - name: SonarQube Scan
-        uses: SonarSource/sonarqube-scan-action@7006c4492b2e0ee0f816d36501671557c97f5995 # v8.1.0
+        uses: SonarSource/sonarqube-scan-action@713881670b6b3676cda39549040e2d88c70d582e # v8.2.0
         env:
           SONAR_TOKEN: ${{ secrets.SONAR_CLOUD_TOKEN }}
diff --git a/.github/workflows/fe-tag.yml b/.github/workflows/fe-tag.yml
index 3481cb0..eb787ff 100644
--- a/.github/workflows/fe-tag.yml
+++ b/.github/workflows/fe-tag.yml
@@ -27,7 +27,7 @@ jobs:
   tag:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0