diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index f30b206..1cc1e8a 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -79,7 +79,7 @@ jobs:
 
       - name: Upload coverage report as artifact
         if: ${{ matrix.os == 'ubuntu-latest' && matrix.python-version == env.PYTHON_VERSION }}
-        uses: actions/upload-artifact@v6
+        uses: actions/upload-artifact@v7
         with:
           name: coverage-report-${{ matrix.python-version }}-${{ matrix.os }}-${{ github.run_id }}
           path: |
@@ -119,7 +119,7 @@ jobs:
           uv build
 
       - name: Upload distribution as artifact
-        uses: actions/upload-artifact@v6
+        uses: actions/upload-artifact@v7
         with:
           name: python-package-distributions-${{ github.sha }}
           path: dist/
diff --git a/.github/workflows/pr-checks.yml b/.github/workflows/pr-checks.yml
index fd98e0e..b8d15c9 100644
--- a/.github/workflows/pr-checks.yml
+++ b/.github/workflows/pr-checks.yml
@@ -152,7 +152,7 @@ jobs:
 
       - name: Upload coverage report as artifact
         if: always()
-        uses: actions/upload-artifact@v6
+        uses: actions/upload-artifact@v7
         with:
           name: coverage-report-${{ env.PYTHON_VERSION }}-${{ github.run_id }}
           path: |
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index b6a285e..1a8b8fb 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -58,7 +58,7 @@ jobs:
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
 
       - name: Upload SARIF as build artifact
-        uses: actions/upload-artifact@v6
+        uses: actions/upload-artifact@v7
         with:
           name: snyk-results
           path: |
@@ -102,7 +102,7 @@ jobs:
 
       - name: Upload Bandit results
         if: always()
-        uses: actions/upload-artifact@v6
+        uses: actions/upload-artifact@v7
         with:
           name: bandit-report
           path: bandit-report.json