diff --git a/.github/workflows/bicep-audit.yml b/.github/workflows/bicep-audit.yml
index 55eb0172..21789593 100644
--- a/.github/workflows/bicep-audit.yml
+++ b/.github/workflows/bicep-audit.yml
@@ -19,7 +19,7 @@ jobs:
       security-events: write
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
 
       - name: Run Microsoft Security DevOps Analysis
         uses: microsoft/security-devops-action@preview
diff --git a/.github/workflows/python-test.yaml b/.github/workflows/python-test.yaml
index e438a10a..b03f9a63 100644
--- a/.github/workflows/python-test.yaml
+++ b/.github/workflows/python-test.yaml
@@ -13,7 +13,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        os: ["ubuntu-20.04"]
+        os: ["ubuntu-latest"]
         python_version: ["3.8", "3.9", "3.10", "3.11"]
     services:
       postgres:
@@ -25,7 +25,7 @@ jobs:
         # needed because the postgres container does not provide a healthcheck
         options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5
     steps:
-        - uses: actions/checkout@v4
+        - uses: actions/checkout@v5
         - name: Setup python
           uses: actions/setup-python@v5
           with: