diff --git a/.github/workflows/docker-build-push-ecr.yaml b/.github/workflows/docker-build-push-ecr.yaml
index f33c2aab..68fc243e 100644
--- a/.github/workflows/docker-build-push-ecr.yaml
+++ b/.github/workflows/docker-build-push-ecr.yaml
@@ -79,7 +79,7 @@ jobs:
           merge-multiple: ${{ env.ARTIFACT_MERGE_MULTIPLE }}
 
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3
+        uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3
 
       - name: Configure AWS credentials
         uses: aws-actions/configure-aws-credentials@e3dd6a429d7300a6a4c196c26e071d42e0343502 # v4
@@ -95,7 +95,7 @@ jobs:
         uses: aws-actions/amazon-ecr-login@062b18b96a7aff071d4dc91bc00c4c1a7945b076 # v2
 
       - name: Build and export
-        uses: docker/build-push-action@4f58ea79222b3b9dc2c8bbdd6debcef730109a75 # v6
+        uses: docker/build-push-action@b32b51a8eda65d6793cd0494a773d4f6bcef32dc # v6
         env:
           REGISTRY: ${{ steps.login-ecr.outputs.registry }}
           REPOSITORY: ${{ inputs.image_name || vars.image_name || github.event.repository.name }}
diff --git a/.github/workflows/docker-build.yaml b/.github/workflows/docker-build.yaml
index 9b34edaa..baac4c75 100644
--- a/.github/workflows/docker-build.yaml
+++ b/.github/workflows/docker-build.yaml
@@ -31,10 +31,10 @@ jobs:
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
 
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3
+        uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3
 
       - name: Build and export
-        uses: docker/build-push-action@4f58ea79222b3b9dc2c8bbdd6debcef730109a75 # v6
+        uses: docker/build-push-action@b32b51a8eda65d6793cd0494a773d4f6bcef32dc # v6
         env:
           DOCKER_CTX: ${{ inputs.docker_context || vars.docker_context || '.'}}
           IMAGE_NAME: ${{ inputs.image_name || vars.image_name || github.event.repository.name }}
@@ -52,7 +52,7 @@ jobs:
         env:
           IMAGE_NAME: ${{ inputs.image_name || vars.image_name || github.event.repository.name }}
           ARTIFACT_RETENTION_DAYS: ${{ inputs.artifact_retention_days || vars.artifact_retention_days || 5 }}
-        uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4
+        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4
         with:
           name: ${{ env.IMAGE_NAME }}-${{ github.sha }}
           path: /tmp/${{ env.IMAGE_NAME }}.tar
diff --git a/.github/workflows/gh-release-on-main.yaml b/.github/workflows/gh-release-on-main.yaml
index 5cc47243..e08ee0ec 100644
--- a/.github/workflows/gh-release-on-main.yaml
+++ b/.github/workflows/gh-release-on-main.yaml
@@ -59,7 +59,7 @@ jobs:
 
       - name: Release
         if: steps.version_increment.outputs.RELEASE == 'true'
-        uses: softprops/action-gh-release@e7a8f85e1c67a31e6ed99a94b41bd0b71bbee6b8 # v2
+        uses: softprops/action-gh-release@c95fe1489396fe8a9eb87c0abf8aa5b2ef267fda # v2
         with:
           tag_name: ${{ steps.version_increment.outputs.NEW_TAG }}
           generate_release_notes: true
diff --git a/.github/workflows/gh-release.yaml b/.github/workflows/gh-release.yaml
index 7d1f62b8..b25ec5d8 100644
--- a/.github/workflows/gh-release.yaml
+++ b/.github/workflows/gh-release.yaml
@@ -18,7 +18,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
       - name: Release
-        uses: softprops/action-gh-release@e7a8f85e1c67a31e6ed99a94b41bd0b71bbee6b8 # v2
+        uses: softprops/action-gh-release@c95fe1489396fe8a9eb87c0abf8aa5b2ef267fda # v2
         with:
           tag_name: ${{ inputs.tag }}
           generate_release_notes: true
diff --git a/.github/workflows/lambda-build-node.yaml b/.github/workflows/lambda-build-node.yaml
index 064ef3bb..c7e4d447 100644
--- a/.github/workflows/lambda-build-node.yaml
+++ b/.github/workflows/lambda-build-node.yaml
@@ -51,7 +51,7 @@ jobs:
           NODE_VERSION: ${{ inputs.node_version }}
           SOURCE_DIR: ${{ inputs.source_dir || vars.source_dir || 'src' }}
           ARTIFACT_RETENTION_DAYS: ${{ inputs.artifact_retention_days || vars.artifact_retention_days || 5}}
-        uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4
+        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4
         with:
           name: ${{ steps.build.outputs.file_name }}-${{ env.NODE_VERSION }}
           path: ${{ env.SOURCE_DIR }}/${{ steps.build.outputs.file_path }}
diff --git a/.github/workflows/lambda-nodejs.yaml b/.github/workflows/lambda-nodejs.yaml
index 6c4cb94a..991af139 100644
--- a/.github/workflows/lambda-nodejs.yaml
+++ b/.github/workflows/lambda-nodejs.yaml
@@ -47,7 +47,7 @@ jobs:
           zip -r lambda.zip .
 
       - name: Archive
-        uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4
+        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4
         with:
           name: ${{ inputs.gh_artifact_name }}
           path: ${{ inputs.gh_artifact_path }}
diff --git a/.github/workflows/tf-apply.yaml b/.github/workflows/tf-apply.yaml
index 68044d08..7468aae1 100644
--- a/.github/workflows/tf-apply.yaml
+++ b/.github/workflows/tf-apply.yaml
@@ -106,7 +106,7 @@ jobs:
 
       - name: Terraform Apply
         id: tf_apply
-        uses: dflook/terraform-apply@7d435d4d115a11e5db1e710ac969f5382f0f6f9f # v1
+        uses: dflook/terraform-apply@8ffcf535ca17dd84586bcda5b072f3d7bde0a97c # v1
         env:
           TERRAFORM_PRE_RUN: |
             AWS_CLI_VERSION=2.15.36
diff --git a/.github/workflows/tf-cleanup.yaml b/.github/workflows/tf-cleanup.yaml
index 36fb55e0..dcfa9a14 100644
--- a/.github/workflows/tf-cleanup.yaml
+++ b/.github/workflows/tf-cleanup.yaml
@@ -82,7 +82,7 @@ jobs:
           aws-region: ${{ env.AWS_REGION }}
 
       - name: Terraform Destroy
-        uses: dflook/terraform-destroy-workspace@d325c330b1a2cb66e2f873a8438bdd82f3914099 # v1
+        uses: dflook/terraform-destroy-workspace@54fa37554f3e3f0d1353d864e61d4340b461fcb0 # v1
         id: first_try
         env:
           TERRAFORM_PRE_RUN: |
@@ -101,7 +101,7 @@ jobs:
           variables: ${{ env.TF_VARS }}
 
       - name: Retry Terraform Destroy
-        uses: dflook/terraform-destroy-workspace@d325c330b1a2cb66e2f873a8438bdd82f3914099 # v1
+        uses: dflook/terraform-destroy-workspace@54fa37554f3e3f0d1353d864e61d4340b461fcb0 # v1
         if: ${{ failure() && steps.first_try.outputs.failure-reason == 'destroy-failed' }}
         env:
           TERRAFORM_PRE_RUN: |
diff --git a/.github/workflows/tf-destroy.yaml b/.github/workflows/tf-destroy.yaml
index bf3bd2c0..6005f515 100644
--- a/.github/workflows/tf-destroy.yaml
+++ b/.github/workflows/tf-destroy.yaml
@@ -70,7 +70,7 @@ jobs:
           aws-region: ${{ env.AWS_REGION }}
 
       - name: Terraform Destroy
-        uses: dflook/terraform-destroy@2e74fdc282c2980b12503986b2d8483d7cbfa14a # v1
+        uses: dflook/terraform-destroy@e041432f30e228bf5d24bf6072202dc121e68f29 # v1
         id: first_try
         env:
           TERRAFORM_PRE_RUN: |
@@ -88,7 +88,7 @@ jobs:
           variables: ${{ env.TF_VARS }}
 
       - name: Terraform Destroy
-        uses: dflook/terraform-destroy@2e74fdc282c2980b12503986b2d8483d7cbfa14a # v1
+        uses: dflook/terraform-destroy@e041432f30e228bf5d24bf6072202dc121e68f29 # v1
         if: ${{ failure() && steps.first_try.outputs.failure-reason == 'destroy-failed' }}
         env:
           TERRAFORM_PRE_RUN: |
diff --git a/.github/workflows/tf-feature.yaml b/.github/workflows/tf-feature.yaml
index b731b0f4..4ef4083f 100644
--- a/.github/workflows/tf-feature.yaml
+++ b/.github/workflows/tf-feature.yaml
@@ -111,7 +111,7 @@ jobs:
           merge-multiple: ${{ env.GH_ARTIFACT_MERGE_MULTIPLE }}
 
       - name: Use Branch Workspace
-        uses: dflook/terraform-new-workspace@328d939679a5ddd00425d9cd75ceb6689f54c2bc # v1
+        uses: dflook/terraform-new-workspace@38261154e6b6e8124972ca5a1009d6157c9e0952 # v1
         with:
           workspace: ${{ env.TF_WORKSPACE }}
           path: ${{ env.TF_DIR }}
@@ -120,7 +120,7 @@ jobs:
 
       - name: Deploy Test Infrastructure
         id: tf_apply
-        uses: dflook/terraform-apply@7d435d4d115a11e5db1e710ac969f5382f0f6f9f # v1
+        uses: dflook/terraform-apply@8ffcf535ca17dd84586bcda5b072f3d7bde0a97c # v1
         env:
           TERRAFORM_PRE_RUN: |
             AWS_CLI_VERSION=2.15.36
diff --git a/.github/workflows/tf-plan.yaml b/.github/workflows/tf-plan.yaml
index 081b291b..e3b7faae 100644
--- a/.github/workflows/tf-plan.yaml
+++ b/.github/workflows/tf-plan.yaml
@@ -105,14 +105,14 @@ jobs:
           merge-multiple: ${{ env.GH_ARTIFACT_MERGE_MULTIPLE }}
 
       - name: Terraform Format
-        uses: dflook/terraform-fmt-check@c9309dc072b71dded0f23b29e3ffd4406e27c078 # v1
+        uses: dflook/terraform-fmt-check@2bf43ab3454607c0f8567abc333f8208447ec03f # v1
         with:
           path: ${{ env.TF_DIR}}
           backend_config: ${{ env.TF_BACKEND_CONFIGS }}
           backend_config_file: ${{ env.TF_BACKEND_CONFIG_FILES }}
 
       - name: Terraform Validate
-        uses: dflook/terraform-validate@93108d6d37b2fd79d527ec77c190105de1429bb5 # v1
+        uses: dflook/terraform-validate@46e4736fe16f84ba22a09c6c4d4a7bd5bb5f978e # v1
         with:
           path: ${{ env.TF_DIR}}
           backend_config: ${{ env.TF_BACKEND_CONFIGS }}
@@ -120,7 +120,7 @@ jobs:
 
       - name: Terraform Plan
         id: plan
-        uses: dflook/terraform-plan@b0877a1bf56160160ab482f4aff8a12fff35fe06 # v1
+        uses: dflook/terraform-plan@ce9a5c5ab9fe6383d3daaa46c5dc25bce2c5fda8 # v1
         env:
           TERRAFORM_PRE_RUN: |
             AWS_CLI_VERSION=2.15.36