diff --git a/.github/workflows/fe-build.yml b/.github/workflows/fe-build.yml
index 5e92148..67f83bc 100644
--- a/.github/workflows/fe-build.yml
+++ b/.github/workflows/fe-build.yml
@@ -26,7 +26,7 @@ jobs:
           ram_size_kb=$(grep MemTotal /proc/meminfo | awk '{print $2}')
           ram_size_gb=$(echo "scale=2; $ram_size_kb/1024/1024" | bc)
           echo "Total RAM size: $ram_size_gb GB"
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-check-upmerge.yml b/.github/workflows/fe-check-upmerge.yml
index 1b11c11..6e75073 100644
--- a/.github/workflows/fe-check-upmerge.yml
+++ b/.github/workflows/fe-check-upmerge.yml
@@ -15,7 +15,7 @@ jobs:
     name: Run Upmerge Flow
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-cleanup-snapshots.yml b/.github/workflows/fe-cleanup-snapshots.yml
index cae665a..128173d 100644
--- a/.github/workflows/fe-cleanup-snapshots.yml
+++ b/.github/workflows/fe-cleanup-snapshots.yml
@@ -17,7 +17,7 @@ jobs:
     name: Cleanup Snapshot Artifacts
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-code-quality.yml b/.github/workflows/fe-code-quality.yml
index ccca4dc..238af28 100644
--- a/.github/workflows/fe-code-quality.yml
+++ b/.github/workflows/fe-code-quality.yml
@@ -39,7 +39,7 @@ jobs:
       jobCount: 4
       coverageEnabled: ${{ secrets.SONAR_CLOUD_TOKEN != '' }}
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ github.event.pull_request.head.ref }}
           fetch-depth: 0
@@ -122,7 +122,7 @@ jobs:
           fi
 
       - name: Checkout
-        uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+        uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           fetch-depth: 0
 
@@ -177,6 +177,6 @@ jobs:
           fi
 
       - name: SonarQube Scan
-        uses: SonarSource/sonarqube-scan-action@7006c4492b2e0ee0f816d36501671557c97f5995 # v8.1.0
+        uses: SonarSource/sonarqube-scan-action@713881670b6b3676cda39549040e2d88c70d582e # v8.2.0
         env:
           SONAR_TOKEN: ${{ secrets.SONAR_CLOUD_TOKEN }}
diff --git a/.github/workflows/fe-e2e.yml b/.github/workflows/fe-e2e.yml
index bc16ba1..f123fd1 100644
--- a/.github/workflows/fe-e2e.yml
+++ b/.github/workflows/fe-e2e.yml
@@ -24,7 +24,7 @@ jobs:
     env:
       jobCount: 4
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-install-deps.yml b/.github/workflows/fe-install-deps.yml
index 37daa92..08e374a 100644
--- a/.github/workflows/fe-install-deps.yml
+++ b/.github/workflows/fe-install-deps.yml
@@ -17,7 +17,7 @@ jobs:
       group: fe-install-deps-${{ github.ref }}
       cancel-in-progress: true
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-licenses.yml b/.github/workflows/fe-licenses.yml
index 625a9da..5496a28 100644
--- a/.github/workflows/fe-licenses.yml
+++ b/.github/workflows/fe-licenses.yml
@@ -20,7 +20,7 @@ jobs:
       group: fe-licenses-${{ github.ref }}
       cancel-in-progress: true
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ github.event.pull_request.head.ref }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-pr-close.yml b/.github/workflows/fe-pr-close.yml
index 683aa84..bdc625d 100644
--- a/.github/workflows/fe-pr-close.yml
+++ b/.github/workflows/fe-pr-close.yml
@@ -20,7 +20,7 @@ jobs:
   remove-artifacts:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ github.event.pull_request.head.sha }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-pr-snapshot.yml b/.github/workflows/fe-pr-snapshot.yml
index 91d77e6..92e3c5e 100644
--- a/.github/workflows/fe-pr-snapshot.yml
+++ b/.github/workflows/fe-pr-snapshot.yml
@@ -23,7 +23,7 @@ jobs:
     env:
       NODE_OPTIONS: --max-old-space-size=4096
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ github.event.pull_request.head.ref }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-release.yml b/.github/workflows/fe-release.yml
index 950d280..da916b9 100644
--- a/.github/workflows/fe-release.yml
+++ b/.github/workflows/fe-release.yml
@@ -20,7 +20,7 @@ jobs:
   release-version:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ''
           fetch-depth: 0
diff --git a/.github/workflows/fe-snapshot.yml b/.github/workflows/fe-snapshot.yml
index 9612fa2..77528a4 100644
--- a/.github/workflows/fe-snapshot.yml
+++ b/.github/workflows/fe-snapshot.yml
@@ -25,7 +25,7 @@ jobs:
     env:
       NODE_OPTIONS: --max-old-space-size=4096
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0
diff --git a/.github/workflows/fe-sonar.yml b/.github/workflows/fe-sonar.yml
index 6a60e05..0b4b782 100644
--- a/.github/workflows/fe-sonar.yml
+++ b/.github/workflows/fe-sonar.yml
@@ -37,7 +37,7 @@ jobs:
       contents: read
     steps:
       - name: Checkout repository
-        uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+        uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           fetch-depth: 0  # Full history for SonarQube analysis
 
@@ -126,6 +126,6 @@ jobs:
           cat sonar-project.properties
 
       - name: SonarQube Scan
-        uses: SonarSource/sonarqube-scan-action@7006c4492b2e0ee0f816d36501671557c97f5995 # v8.1.0
+        uses: SonarSource/sonarqube-scan-action@713881670b6b3676cda39549040e2d88c70d582e # v8.2.0
         env:
           SONAR_TOKEN: ${{ secrets.SONAR_CLOUD_TOKEN }}
diff --git a/.github/workflows/fe-tag.yml b/.github/workflows/fe-tag.yml
index 459cc6c..b151c54 100644
--- a/.github/workflows/fe-tag.yml
+++ b/.github/workflows/fe-tag.yml
@@ -27,7 +27,7 @@ jobs:
   tag:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
+      - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
         with:
           ref: ${{ inputs.GHA_REF }}
           fetch-depth: 0