diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 98e688f261..f59553dbcb 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -43,7 +43,7 @@ jobs:
       contents: read  # for actions/checkout to fetch code
       pull-requests: read  # for golangci/golangci-lint-action to fetch pull requests
     name: Inspect packages
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     needs: skip-check
     if: ${{ needs.skip-check.outputs.should_skip != 'true' }}
     steps:
diff --git a/.github/workflows/changelog_pr.yaml b/.github/workflows/changelog_pr.yaml
index 6381170530..287b018939 100644
--- a/.github/workflows/changelog_pr.yaml
+++ b/.github/workflows/changelog_pr.yaml
@@ -13,7 +13,7 @@ jobs:
     permissions:
       contents: write  # for peter-evans/create-pull-request to create branch
       pull-requests: write  # for peter-evans/create-pull-request to create a PR
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - name: Harden Runner
         uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
diff --git a/.github/workflows/curldemo.yaml b/.github/workflows/curldemo.yaml
index d4a04b0ad8..737ccb246e 100644
--- a/.github/workflows/curldemo.yaml
+++ b/.github/workflows/curldemo.yaml
@@ -12,7 +12,7 @@ permissions:  # added using https://github.com/step-security/secure-workflows
 
 jobs:
   curldemo:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     env:
       DOCKER_CLI_EXPERIMENTAL: "enabled"
     steps:
diff --git a/.github/workflows/gh-pages.yaml b/.github/workflows/gh-pages.yaml
index 763b1da4d0..d658aa4d8d 100644
--- a/.github/workflows/gh-pages.yaml
+++ b/.github/workflows/gh-pages.yaml
@@ -14,7 +14,7 @@ jobs:
   publish:
     permissions:
       contents: write
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - name: Harden Runner
         uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
diff --git a/.github/workflows/helm_check-values-schema.yaml b/.github/workflows/helm_check-values-schema.yaml
index 0213c285f0..7d65b71caf 100644
--- a/.github/workflows/helm_check-values-schema.yaml
+++ b/.github/workflows/helm_check-values-schema.yaml
@@ -14,7 +14,7 @@ permissions:  # added using https://github.com/step-security/secure-workflows
 jobs:
   check:
     name: 'Check values.yaml and its schema in PR'
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - name: Harden Runner
         uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
diff --git a/.github/workflows/helm_publish.yaml b/.github/workflows/helm_publish.yaml
index 2eb0bc9db7..a2a7cd1cd1 100644
--- a/.github/workflows/helm_publish.yaml
+++ b/.github/workflows/helm_publish.yaml
@@ -9,7 +9,7 @@ permissions:
 
 jobs:
   publish:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - name: Harden Runner
         uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
diff --git a/.github/workflows/olm_pr.yaml b/.github/workflows/olm_pr.yaml
index 2cd13955b3..79c1c0a7a9 100644
--- a/.github/workflows/olm_pr.yaml
+++ b/.github/workflows/olm_pr.yaml
@@ -25,7 +25,7 @@ permissions:  # added using https://github.com/step-security/secure-workflows
 
 jobs:
   olm-bundle-pr:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
       - name: Harden Runner
         uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
diff --git a/.github/workflows/terrascan.yaml b/.github/workflows/terrascan.yaml
index 72f95f851a..299ed8dc39 100644
--- a/.github/workflows/terrascan.yaml
+++ b/.github/workflows/terrascan.yaml
@@ -15,7 +15,7 @@ permissions:
 
 jobs:
   terrascan:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
     - name: Harden Runner
       uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
diff --git a/.github/workflows/terratest-istiov1beta1.yaml b/.github/workflows/terratest-istiov1beta1.yaml
index f7497a8bc6..90d36c8f3d 100644
--- a/.github/workflows/terratest-istiov1beta1.yaml
+++ b/.github/workflows/terratest-istiov1beta1.yaml
@@ -10,7 +10,7 @@ permissions:
 
 jobs:
   terratest-istio:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     if: ${{ github.event.label.name == 'istio' }}
     steps:
       - name: Checkout
diff --git a/.github/workflows/terratest-more-clusters.yaml b/.github/workflows/terratest-more-clusters.yaml
index 727c6b17bb..e44b0fd4d0 100644
--- a/.github/workflows/terratest-more-clusters.yaml
+++ b/.github/workflows/terratest-more-clusters.yaml
@@ -10,7 +10,7 @@ permissions:
 
 jobs:
   terratest-n-clusters:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     if: ${{ github.event.label.name == 'heavy-tests' }}
     steps:
       - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
diff --git a/.github/workflows/terratest.yaml b/.github/workflows/terratest.yaml
index ae88984623..74c5927478 100644
--- a/.github/workflows/terratest.yaml
+++ b/.github/workflows/terratest.yaml
@@ -40,7 +40,7 @@ jobs:
         do_not_skip: '["workflow_dispatch", "schedule"]'
 
   terratest:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     needs: skip-check
     if: ${{ needs.skip-check.outputs.should_skip != 'true' }} && !contains( github.event.pull_request.labels.*.name, 'renovate')
     steps:
diff --git a/.github/workflows/upgrade-testing.yaml b/.github/workflows/upgrade-testing.yaml
index b0e17ead26..09a3ce6188 100644
--- a/.github/workflows/upgrade-testing.yaml
+++ b/.github/workflows/upgrade-testing.yaml
@@ -40,7 +40,7 @@ jobs:
         do_not_skip: '["workflow_dispatch", "schedule"]'
 
   upgrade-testing:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     needs: skip-check
     if: ${{ needs.skip-check.outputs.should_skip != 'true' }} && !contains( github.event.pull_request.labels.*.name, 'renovate')
     steps: