diff --git a/.gitea/workflows/build.yml b/.gitea/workflows/build.yml
index e86a9de..2a398fb 100644
--- a/.gitea/workflows/build.yml
+++ b/.gitea/workflows/build.yml
@@ -27,10 +27,10 @@ jobs:
 
     steps:
     - name: Checkout code
-      uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+      uses: https://git.quad4.io/actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
 
     - name: Set up Go
-      uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
+      uses: https://git.quad4.io/actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
       with:
         go-version: '1.25'
 
@@ -57,8 +57,14 @@ jobs:
         sha256sum "${output_name}" > "${output_name}.sha256"
         echo "Calculated SHA256 for ${output_name}"
 
+    - name: Generate SBOM
+      uses: https://git.quad4.io/actions/gh-gomod-generate-sbom@efc74245d6802c8cefd925620515442756c70d8f # v2
+      with:
+        version: v1
+        args: mod -licenses -json -output bom.json
+
     - name: Upload Artifact
-      uses: actions/upload-artifact@ff15f0306b3f739f7b6fd43fb5d26cd321bd4de5
+      uses: https://git.quad4.io/actions/upload-artifact@ff15f0306b3f739f7b6fd43fb5d26cd321bd4de5
       with:
         name: reticulum-go-${{ matrix.goos }}-${{ matrix.goarch }}
         path: reticulum-go-${{ matrix.goos }}-${{ matrix.goarch }}*
@@ -74,14 +80,14 @@ jobs:
 
     steps:
       - name: Download All Build Artifacts
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a
+        uses: https://git.quad4.io/actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a
         with:
           path: ./release-assets
 
       - name: List downloaded files (for debugging)
         run: ls -R ./release-assets
 
-      - name: Create GitHub Release
-        uses: softprops/action-gh-release@6da8fa9354ddfdc4aeace5fc48d7f679b5214090 # v2.4.1
+      - name: Create Gitea Release
+        uses: https://git.quad4.io/actions/gitea-release-action@4875285c0950474efb7ca2df55233c51333eeb74
         with:
           files: ./release-assets/*/*
diff --git a/.gitea/workflows/go-test.yml b/.gitea/workflows/go-test.yml
index fbf8cd1..16df5b5 100644
--- a/.gitea/workflows/go-test.yml
+++ b/.gitea/workflows/go-test.yml
@@ -30,15 +30,15 @@ jobs:
 
     steps:
       - name: Checkout Source
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: https://git.quad4.io/actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
 
       - name: Set up Go 1.25
-        uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
+        uses: https://git.quad4.io/actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
         with:
           go-version: '1.25'
 
       - name: Cache Go modules
-        uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
+        uses: https://git.quad4.io/actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
         with:
           path: |
             ~/go/pkg/mod
diff --git a/.gitea/workflows/gosec.yml b/.gitea/workflows/gosec.yml
index c1746ee..565e39f 100644
--- a/.gitea/workflows/gosec.yml
+++ b/.gitea/workflows/gosec.yml
@@ -20,8 +20,8 @@ jobs:
       GO111MODULE: on
     steps:
       - name: Checkout Source
-        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+        uses: https://git.quad4.io/actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
       - name: Run Gosec Security Scanner
-        uses: securego/gosec@master
+        uses: https://git.quad4.io/actions/gosec@c073629009897d89e03229bc81232c7375892086
         with:
           args: ./...
diff --git a/.gitea/workflows/revive.yml b/.gitea/workflows/revive.yml
index f08aaee..bc05c63 100644
--- a/.gitea/workflows/revive.yml
+++ b/.gitea/workflows/revive.yml
@@ -14,10 +14,10 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - name: Checkout code
-      uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+      uses: https://git.quad4.io/actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
 
     - name: Set up Go
-      uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
+      uses: https://git.quad4.io/actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
       with:
         go-version: '1.25'
 
diff --git a/.gitea/workflows/slsa-go-releaser.yml b/.gitea/workflows/slsa-go-releaser.yml
deleted file mode 100644
index 036153e..0000000
--- a/.gitea/workflows/slsa-go-releaser.yml
+++ /dev/null
@@ -1,24 +0,0 @@
-name: SLSA Go releaser
-
-on:
-  workflow_dispatch:
-  release:
-    types: [created]
-
-permissions:
-  contents: write
-  id-token: write
-  actions: read
-
-jobs:
-  build:
-    permissions:
-      id-token: write
-      contents: write
-      actions: read
-    uses: slsa-framework/slsa-github-generator/.github/workflows/builder_go_slsa3.yml@v2.1.0
-    with:
-      go-version-file: go.mod
-      config-file: .slsa-goreleaser.yml
-      upload-assets: true
-
diff --git a/.gitea/workflows/tinygo.yml b/.gitea/workflows/tinygo.yml
index ec91fe5..b5edd14 100644
--- a/.gitea/workflows/tinygo.yml
+++ b/.gitea/workflows/tinygo.yml
@@ -30,10 +30,10 @@ jobs:
 
     steps:
     - name: Checkout code
-      uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+      uses: https://git.quad4.io/actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
 
     - name: Set up Go
-      uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00
+      uses: https://git.quad4.io/actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00
       with:
         go-version: '1.24'
 
@@ -58,7 +58,7 @@ jobs:
         fi
 
     - name: Upload Artifact
-      uses: actions/upload-artifact@ff15f0306b3f739f7b6fd43fb5d26cd321bd4de5
+      uses: https://git.quad4.io/actions/upload-artifact@ff15f0306b3f739f7b6fd43fb5d26cd321bd4de5
       with:
         name: ${{ matrix.name }}
         path: bin/${{ matrix.output }}*