diff --git a/.github/workflows/_cache_docker.yml b/.github/workflows/_cache_docker.yml
index ab75e52df719..aa0333e818e0 100644
--- a/.github/workflows/_cache_docker.yml
+++ b/.github/workflows/_cache_docker.yml
@@ -37,7 +37,7 @@ jobs:
   docker:
     runs-on: ubuntu-22.04
     steps:
-    - uses: envoyproxy/toolshed/gh-actions/docker/cache/prime@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/docker/cache/prime@actions-v0.1.11
       name: Prime Docker cache (${{ inputs.image_repo }}:${{ inputs.image_tag }}@sha256:${{ inputs.image_sha }})
       with:
         image_tag: "${{ inputs.image_repo }}:${{ inputs.image_tag }}@sha256:${{ inputs.image_sha }}"
diff --git a/.github/workflows/_ci.yml b/.github/workflows/_ci.yml
index fcc79f2f6194..acd584ee8ed2 100644
--- a/.github/workflows/_ci.yml
+++ b/.github/workflows/_ci.yml
@@ -99,11 +99,11 @@ jobs:
     steps:
     - if: ${{ inputs.cache-build-image }}
       name: Restore Docker cache ${{ inputs.cache-build-image && format('({0})', inputs.cache-build-image) || '' }}
-      uses: envoyproxy/toolshed/gh-actions/docker/cache/restore@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/docker/cache/restore@actions-v0.1.11
       with:
         image_tag: ${{ inputs.cache-build-image }}
 
-    - uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.11
       id: checkout
       name: Checkout Envoy repository
       with:
@@ -133,21 +133,21 @@ jobs:
 
     - if: ${{ inputs.diskspace-hack }}
       name: Free diskspace
-      uses: envoyproxy/toolshed/gh-actions/diskspace@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/diskspace@actions-v0.1.11
     - run: |
         echo "disk space at beginning of build:"
         df -h
       name: "Check disk space at beginning"
       shell: bash
 
-    - uses: envoyproxy/toolshed/gh-actions/using/steps@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/using/steps@actions-v0.1.11
       name: Run pre steps
       if: ${{ inputs.steps-pre }}
       with:
         name: ${{ inputs.steps-pre-name }}
         steps: ${{ inputs.steps-pre }}
 
-    - uses: envoyproxy/toolshed/gh-actions/github/run@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/github/run@actions-v0.1.11
       name: 'Run CI target ${{ inputs.target }}'
       with:
         catch-errors: ${{ inputs.catch-errors }}
@@ -170,7 +170,7 @@ jobs:
         BAZEL_FAKE_SCM_REVISION: ${{ github.event_name == 'pull_request' && 'e3b4a6e9570da15ac1caffdded17a8bebdc7dfc9' || '' }}
         CI_TARGET_BRANCH: ${{ github.event_name == 'pull_request' && github.event.base.ref || github.ref }}
 
-    - uses: envoyproxy/toolshed/gh-actions/using/steps@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/using/steps@actions-v0.1.11
       name: Run post steps
       if: ${{ inputs.steps-post }}
       with:
diff --git a/.github/workflows/_env.yml b/.github/workflows/_env.yml
index 8124eac1d940..f6a122e90198 100644
--- a/.github/workflows/_env.yml
+++ b/.github/workflows/_env.yml
@@ -153,7 +153,7 @@ jobs:
         build_image_tag: ${{ inputs.build_image_tag }}
         build_image_mobile_sha: ${{ inputs.build_image_mobile_sha }}
         build_image_sha: ${{ inputs.build_image_sha }}
-    - uses: envoyproxy/toolshed/gh-actions/github/merge-commit@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/github/merge-commit@actions-v0.1.11
       id: merge-commit
       if: ${{ github.event_name == 'pull_request_target' }}
       with:
diff --git a/.github/workflows/_stage_publish.yml b/.github/workflows/_stage_publish.yml
index 8f99a5181dcd..cba29d0c7d93 100644
--- a/.github/workflows/_stage_publish.yml
+++ b/.github/workflows/_stage_publish.yml
@@ -126,7 +126,7 @@ jobs:
     needs:
     - publish
     steps:
-    - uses: envoyproxy/toolshed/gh-actions/dispatch@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/dispatch@actions-v0.1.11
       with:
         app_id: ${{ secrets.ENVOY_CI_SYNC_APP_ID }}
         key: "${{ secrets.ENVOY_CI_SYNC_APP_KEY }}"
diff --git a/.github/workflows/_workflow-start.yml b/.github/workflows/_workflow-start.yml
index 0dcd80bd5aea..7a1bb34d1141 100644
--- a/.github/workflows/_workflow-start.yml
+++ b/.github/workflows/_workflow-start.yml
@@ -30,7 +30,7 @@ jobs:
 
     - if: ${{ steps.env.outputs.trusted != 'true' }}
       name: Start status check
-      uses: envoyproxy/toolshed/gh-actions/status@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/status@actions-v0.1.11
       with:
         authToken: ${{ secrets.GITHUB_TOKEN }}
         context: ${{ inputs.workflow_name }}
diff --git a/.github/workflows/codeql-push.yml b/.github/workflows/codeql-push.yml
index 5ec62e9c8afd..05e13ee4c700 100644
--- a/.github/workflows/codeql-push.yml
+++ b/.github/workflows/codeql-push.yml
@@ -26,7 +26,7 @@ jobs:
 
     steps:
     - name: Pre-cleanup
-      uses: envoyproxy/toolshed/gh-actions/diskspace@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/diskspace@actions-v0.1.11
       with:
         to_remove: |
           /usr/local/lib/android
diff --git a/.github/workflows/commands.yml b/.github/workflows/commands.yml
index d5d25bebf4e1..c2e9847aa7c5 100644
--- a/.github/workflows/commands.yml
+++ b/.github/workflows/commands.yml
@@ -24,7 +24,7 @@ jobs:
       actions: write
       checks: read
     steps:
-    - uses: envoyproxy/toolshed/gh-actions/retest@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/retest@actions-v0.1.11
       with:
         token: ${{ secrets.GITHUB_TOKEN }}
         azp_org: cncf
diff --git a/.github/workflows/envoy-dependency.yml b/.github/workflows/envoy-dependency.yml
index 5e539e325f34..09caebb06c23 100644
--- a/.github/workflows/envoy-dependency.yml
+++ b/.github/workflows/envoy-dependency.yml
@@ -50,13 +50,13 @@ jobs:
     steps:
     - id: checkout
       name: Checkout Envoy repository
-      uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.11
       with:
         app_id: ${{ secrets.ENVOY_CI_DEP_APP_ID }}
         app_key: ${{ secrets.ENVOY_CI_DEP_APP_KEY }}
     - id: version
       name: Shorten (possible) SHA
-      uses: envoyproxy/toolshed/gh-actions/str/sub@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/str/sub@actions-v0.1.11
       with:
         string: ${{ inputs.version }}
         length: 7
@@ -71,13 +71,13 @@ jobs:
         TARGET: ${{ inputs.task == 'bazel' && 'update' || 'api-update' }}
         TASK: ${{ inputs.task == 'bazel' && 'bazel' || 'api/bazel' }}
         GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-    - uses: envoyproxy/toolshed/gh-actions/upload/diff@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/upload/diff@actions-v0.1.11
       name: Upload diff
       with:
         name: ${{ inputs.dependency }}-${{ steps.version.outputs.string }}
     - name: Create a PR
       if: ${{ inputs.pr }}
-      uses: envoyproxy/toolshed/gh-actions/github/pr@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/github/pr@actions-v0.1.11
       with:
         base: main
         body: |
@@ -106,7 +106,7 @@ jobs:
     name: Update build image (PR)
     runs-on: ubuntu-22.04
     steps:
-    - uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.11
       id: checkout
       name: Checkout Envoy repository
       with:
@@ -145,7 +145,7 @@ jobs:
 
     - name: Check Docker SHAs
       id: build-images
-      uses: envoyproxy/toolshed/gh-actions/docker/shas@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/docker/shas@actions-v0.1.11
       with:
         images: |
            sha: envoyproxy/envoy-build-ubuntu:${{ steps.build-tools.outputs.tag }}
@@ -174,7 +174,7 @@ jobs:
       name: Update SHAs
       working-directory: envoy
     - name: Create a PR
-      uses: envoyproxy/toolshed/gh-actions/github/pr@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/github/pr@actions-v0.1.11
       with:
         base: main
         body: Created by Envoy dependency bot
diff --git a/.github/workflows/envoy-release.yml b/.github/workflows/envoy-release.yml
index 78511d9df705..f03c8d4853f5 100644
--- a/.github/workflows/envoy-release.yml
+++ b/.github/workflows/envoy-release.yml
@@ -55,7 +55,7 @@ jobs:
     steps:
     - id: checkout
       name: Checkout Envoy repository
-      uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.11
       with:
         app_id: ${{ secrets.ENVOY_CI_PUBLISH_APP_ID }}
         app_key: ${{ secrets.ENVOY_CI_PUBLISH_APP_KEY }}
@@ -77,10 +77,10 @@ jobs:
       name: Check changelog summary
     - if: ${{ inputs.author }}
       name: Validate signoff email
-      uses: envoyproxy/toolshed/gh-actions/email/validate@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/email/validate@actions-v0.1.11
       with:
         email: ${{ inputs.author }}
-    - uses: envoyproxy/toolshed/gh-actions/github/run@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/github/run@actions-v0.1.11
       name: Create release
       with:
         source: |
@@ -105,7 +105,7 @@ jobs:
       name: Release version
       id: release
     - name: Create a PR
-      uses: envoyproxy/toolshed/gh-actions/github/pr@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/github/pr@actions-v0.1.11
       with:
         base: ${{ github.ref_name }}
         commit: false
@@ -130,13 +130,13 @@ jobs:
     steps:
     - id: checkout
       name: Checkout Envoy repository
-      uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.11
       with:
         app_id: ${{ secrets.ENVOY_CI_PUBLISH_APP_ID }}
         app_key: ${{ secrets.ENVOY_CI_PUBLISH_APP_KEY }}
         committer-name: ${{ env.COMMITTER_NAME }}
         committer-email: ${{ env.COMMITTER_EMAIL }}
-    - uses: envoyproxy/toolshed/gh-actions/github/run@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/github/run@actions-v0.1.11
       name: Sync version histories
       with:
         command: >-
@@ -146,7 +146,7 @@ jobs:
           --
           --signoff="${{ env.COMMITTER_NAME }} <${{ env.COMMITTER_EMAIL }}>"
     - name: Create a PR
-      uses: envoyproxy/toolshed/gh-actions/github/pr@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/github/pr@actions-v0.1.11
       with:
         append-commit-message: true
         base: ${{ github.ref_name }}
@@ -176,7 +176,7 @@ jobs:
     name: Create release branch
     steps:
     - name: Checkout repository
-      uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/github/checkout@actions-v0.1.11
       with:
         app_id: ${{ secrets.ENVOY_CI_PUBLISH_APP_ID }}
         app_key: ${{ secrets.ENVOY_CI_PUBLISH_APP_KEY }}
diff --git a/.github/workflows/envoy-sync.yml b/.github/workflows/envoy-sync.yml
index bf79e682d540..773f8be8368c 100644
--- a/.github/workflows/envoy-sync.yml
+++ b/.github/workflows/envoy-sync.yml
@@ -28,7 +28,7 @@ jobs:
         - data-plane-api
         - mobile-website
     steps:
-    - uses: envoyproxy/toolshed/gh-actions/dispatch@actions-v0.1.8
+    - uses: envoyproxy/toolshed/gh-actions/dispatch@actions-v0.1.11
       with:
         repository: "envoyproxy/${{ matrix.downstream }}"
         ref: main
diff --git a/.github/workflows/mobile-android_tests.yml b/.github/workflows/mobile-android_tests.yml
index 16704c01cef7..e9c716effea1 100644
--- a/.github/workflows/mobile-android_tests.yml
+++ b/.github/workflows/mobile-android_tests.yml
@@ -35,7 +35,7 @@ jobs:
     - name: Pre-cleanup
       # Using the defaults in
       # https://github.com/envoyproxy/toolshed/blob/main/gh-actions/diskspace/action.yml.
-      uses: envoyproxy/toolshed/gh-actions/diskspace@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/diskspace@actions-v0.1.11
     - uses: actions/checkout@v4
     - name: Add safe directory
       run: git config --global --add safe.directory /__w/envoy/envoy
@@ -69,7 +69,7 @@ jobs:
     - name: Pre-cleanup
       # Using the defaults in
       # https://github.com/envoyproxy/toolshed/blob/main/gh-actions/diskspace/action.yml.
-      uses: envoyproxy/toolshed/gh-actions/diskspace@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/diskspace@actions-v0.1.11
     - uses: actions/checkout@v4
     - name: Add safe directory
       run: git config --global --add safe.directory /__w/envoy/envoy
diff --git a/.github/workflows/workflow-complete.yml b/.github/workflows/workflow-complete.yml
index 7d7d5a005a0a..d12da7ba2ddd 100644
--- a/.github/workflows/workflow-complete.yml
+++ b/.github/workflows/workflow-complete.yml
@@ -54,7 +54,7 @@ jobs:
         echo "state=${STATE}" >> "$GITHUB_OUTPUT"
       id: job
     - name: Complete status check
-      uses: envoyproxy/toolshed/gh-actions/status@actions-v0.1.8
+      uses: envoyproxy/toolshed/gh-actions/status@actions-v0.1.11
       with:
         authToken: ${{ secrets.GITHUB_TOKEN }}
         context: Verify/examples