diff --git a/.github/workflows/changelog.yaml b/.github/workflows/changelog.yaml
index 76a4ccc..1c25863 100644
--- a/.github/workflows/changelog.yaml
+++ b/.github/workflows/changelog.yaml
@@ -8,7 +8,7 @@ jobs:
     name: changelog
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - uses: actions/github-script@d556feaca394842dc55e4734bf3bb9f685482fa0
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 2feb5e8..1b003ad 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -23,7 +23,7 @@ jobs:
   trufflehog:
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
       with:
         fetch-depth: 0
     - name: TruffleHog OSS
@@ -37,7 +37,7 @@ jobs:
   lint:
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
       with:
         fetch-depth: 0
     - uses: actions/setup-go@v4
@@ -54,7 +54,7 @@ jobs:
   test-vroom:
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
       with:
         fetch-depth: 0
     - uses: actions/setup-go@v4
@@ -68,7 +68,7 @@ jobs:
     runs-on: ubuntu-20.04
     if: ${{ (github.ref_name == 'main') }}
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - timeout-minutes: 20
         run: until docker pull "us.gcr.io/sentryio/vroom:${{ github.sha }}" 2>/dev/null; do sleep 10; done
       - name: Push built docker image
diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml
index 07e6b75..9ec89fd 100644
--- a/.github/workflows/codeql.yaml
+++ b/.github/workflows/codeql.yaml
@@ -40,7 +40,7 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index 98abef0..954a775 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -20,7 +20,7 @@ jobs:
     runs-on: ubuntu-latest
     name: "Release a new vroom version"
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
         with:
           token: ${{ secrets.GH_RELEASE_PAT }}
           fetch-depth: 0
diff --git a/.github/workflows/validate-pipelines.yaml b/.github/workflows/validate-pipelines.yaml
index 7269597..7d34cb6 100644
--- a/.github/workflows/validate-pipelines.yaml
+++ b/.github/workflows/validate-pipelines.yaml
@@ -17,7 +17,7 @@ jobs:
         outputs:
             gocd: ${{ steps.changes.outputs.gocd }}
         steps:
-          - uses: actions/checkout@v3
+          - uses: actions/checkout@v4
           - name: Check for relevant file changes
             uses: getsentry/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
             id: changes
@@ -39,7 +39,7 @@ jobs:
             id-token: "write"
 
         steps:
-            - uses: actions/checkout@v3
+            - uses: actions/checkout@v4
             - id: 'auth'
               uses: google-github-actions/auth@v1
               with:
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 5763a47..b7661e7 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -12,6 +12,8 @@
 
 **Internal**
 
+- Bump actions/checkout from 3 to 4. ([#341](https://github.com/getsentry/vroom/pull/341))
+
 - Bump trufflesecurity/trufflehog from 3.16.4 to 3.60.1. ([#343](https://github.com/getsentry/vroom/pull/343))
 
 - Move FixSamplesTime call to speedscope and calltrees methods([#339](https://github.com/getsentry/vroom/pull/339))