diff --git a/.github/workflows/pullrequest.yml b/.github/workflows/pullrequest.yml
index 489d26b..4c6c146 100644
--- a/.github/workflows/pullrequest.yml
+++ b/.github/workflows/pullrequest.yml
@@ -14,7 +14,7 @@ jobs:
     runs-on: self-hosted
     steps:
       - name: Fetch git repository
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4.1.6
         with:
           fetch-depth: 0
           path: website
@@ -28,14 +28,14 @@ jobs:
           TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Merge test branch
-        uses: linaro-its/merge-test-branch@v2.6
+        uses: linaro-its/merge-test-branch@v2.7
         with:
           path: website
 
       - name: Build site
         run: |
           source ~/.nvm/nvm.sh
-          nvm use 18
+          nvm use 20
           cd ${{ github.workspace }}/website && /srv/github-action-scripts/build-astro-site.sh
         env:
           TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/push.yml b/.github/workflows/push.yml
index f8af69d..e234052 100644
--- a/.github/workflows/push.yml
+++ b/.github/workflows/push.yml
@@ -15,7 +15,7 @@ jobs:
     runs-on: self-hosted
     steps:
       - name: Fetch git repository
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4.1.6
         with:
           path: website
 
@@ -24,6 +24,7 @@ jobs:
 
       - name: set branch env
         run: echo "BRANCH=${{ github.ref_name }}" >> $GITHUB_ENV
+
       - name: security.txt
         # If running on main branch, add signed security.txt file to repo before building
         if: env.BRANCH == 'main'
@@ -40,7 +41,7 @@ jobs:
       - name: Build site
         run: |
           source ~/.nvm/nvm.sh
-          nvm use 18
+          nvm use 20
           cd ${{ github.workspace }}/website && /srv/github-action-scripts/build-astro-site.sh
 
       - name: Check links