diff --git a/.github/workflows/php_composer_normalize.yml b/.github/workflows/php_composer_normalize.yml
index 4cba704..9090ac4 100644
--- a/.github/workflows/php_composer_normalize.yml
+++ b/.github/workflows/php_composer_normalize.yml
@@ -1,11 +1,13 @@
 name: "Composer Normalize"
 
 on:
-  pull_request_target: {}
+  pull_request: {}
   push:
     branches:
       - 1.x
 
+permissions: {}
+
 jobs:
   normalize:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/php_composer_validate.yml b/.github/workflows/php_composer_validate.yml
index 4cf0360..f5c188c 100644
--- a/.github/workflows/php_composer_validate.yml
+++ b/.github/workflows/php_composer_validate.yml
@@ -1,11 +1,13 @@
 name: "Composer Validate"
 
 on:
-  pull_request_target: {}
+  pull_request: {}
   push:
     branches:
       - 1.x
 
+permissions: {}
+
 jobs:
   validate:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/php_pest.yml b/.github/workflows/php_pest.yml
index 4eb17d2..4ad08f1 100644
--- a/.github/workflows/php_pest.yml
+++ b/.github/workflows/php_pest.yml
@@ -1,11 +1,13 @@
 name: "PEST"
 
 on:
-  pull_request_target: {}
+  pull_request: {}
   push:
     branches:
       - 1.x
 
+permissions: {}
+
 jobs:
   pest:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/php_phpcsf.yml b/.github/workflows/php_phpcsf.yml
index 8874c43..7666954 100644
--- a/.github/workflows/php_phpcsf.yml
+++ b/.github/workflows/php_phpcsf.yml
@@ -1,11 +1,13 @@
 name: "PHP CS Fixer"
 
 on:
-  pull_request_target: {}
+  pull_request: {}
   push:
     branches:
       - 1.x
 
+permissions: {}
+
 jobs:
   phpcsf:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/php_phpstan.yml b/.github/workflows/php_phpstan.yml
index 1676298..f1abd23 100644
--- a/.github/workflows/php_phpstan.yml
+++ b/.github/workflows/php_phpstan.yml
@@ -1,11 +1,13 @@
 name: "PHPStan"
 
 on:
-  pull_request_target: {}
+  pull_request: {}
   push:
     branches:
       - 1.x
 
+permissions: {}
+
 jobs:
   phpstan:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/php_psalm.yml b/.github/workflows/php_psalm.yml
index 23f55b0..8c6341c 100644
--- a/.github/workflows/php_psalm.yml
+++ b/.github/workflows/php_psalm.yml
@@ -1,11 +1,13 @@
 name: "Psalm"
 
 on:
-  pull_request_target: {}
+  pull_request: {}
   push:
     branches:
       - 1.x
 
+permissions: {}
+
 jobs:
   psalm:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/php_rector.yml b/.github/workflows/php_rector.yml
index 62cab89..91a7e9c 100644
--- a/.github/workflows/php_rector.yml
+++ b/.github/workflows/php_rector.yml
@@ -1,11 +1,13 @@
 name: "Rector"
 
 on:
-  pull_request_target: {}
+  pull_request: {}
   push:
     branches:
       - 1.x
 
+permissions: {}
+
 jobs:
   rector:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/rep_dependency_review.yml b/.github/workflows/rep_dependency_review.yml
index 0c1d51e..7e8908e 100644
--- a/.github/workflows/rep_dependency_review.yml
+++ b/.github/workflows/rep_dependency_review.yml
@@ -1,8 +1,9 @@
 name: "Dependency Review"
-on: [pull_request_target]
 
-permissions:
-  contents: read
+on:
+  pull_request: {}
+
+permissions: {}
 
 jobs:
   dependency-review:
@@ -11,4 +12,4 @@ jobs:
       - name: "Checkout Repository"
         uses: actions/checkout@v3
       - name: "Dependency Review"
-        uses: actions/dependency-review-action@v2
+        uses: actions/dependency-review-action@v3