diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index a75c370e57..56459d7151 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -10,6 +10,10 @@ on:
   schedule:
     - cron: '25 19 * * 2'
 
+concurrency:
+  group: ${{ github.workflow }}-${{ github.event_name }}-${{ github.ref }}
+  cancel-in-progress: true
+
 permissions:
   contents: read
 
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
index f964a92961..b7d4322c8e 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -9,6 +9,10 @@
 name: 'Dependency Review'
 on: [pull_request]
 
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
 permissions: {}
 
 jobs:
diff --git a/.github/workflows/lambda.yml b/.github/workflows/lambda.yml
index 164ad423e4..4288db4ea4 100644
--- a/.github/workflows/lambda.yml
+++ b/.github/workflows/lambda.yml
@@ -8,6 +8,10 @@ on:
       - 'lambdas/**'
       - '.github/workflows/lambda.yml'
 
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
 permissions:
   contents: read
 
diff --git a/.github/workflows/ossf-scorecard.yml b/.github/workflows/ossf-scorecard.yml
index ab722636c4..884e021b57 100644
--- a/.github/workflows/ossf-scorecard.yml
+++ b/.github/workflows/ossf-scorecard.yml
@@ -7,6 +7,10 @@ on:
   push:
     branches: [ "main" ]
 
+concurrency:
+  group: ${{ github.workflow }}-${{ github.event_name }}-${{ github.ref }}
+  cancel-in-progress: true
+
 permissions:
   contents: read # for actions/checkout and repository analysis
 
diff --git a/.github/workflows/ovs.yml b/.github/workflows/ovs.yml
index c58a48616d..4bc95e6010 100644
--- a/.github/workflows/ovs.yml
+++ b/.github/workflows/ovs.yml
@@ -5,6 +5,10 @@ on:
   merge_group:
     branches: [main]
 
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
 permissions: {}
 
 jobs:
diff --git a/.github/workflows/packer-build.yml b/.github/workflows/packer-build.yml
index c7f96ac93e..32b847b255 100644
--- a/.github/workflows/packer-build.yml
+++ b/.github/workflows/packer-build.yml
@@ -8,6 +8,11 @@ on:
       - "images/**"
       - ".github/workflows/packer-build.yml"
       - "module/runners/templates/**"
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
 permissions:
   contents: read
 
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index d218bfb1cc..28a7ee1f9b 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -6,6 +6,10 @@ on:
       - v1
   workflow_dispatch:
 
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: false
+
 permissions:
   contents: read
 
diff --git a/.github/workflows/semantic-check.yml b/.github/workflows/semantic-check.yml
index 148a41f72f..83bc3c4da7 100644
--- a/.github/workflows/semantic-check.yml
+++ b/.github/workflows/semantic-check.yml
@@ -5,6 +5,11 @@ on:
       - opened
       - edited
       - synchronize
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.event.pull_request.number }}
+  cancel-in-progress: true
+
 permissions:
   contents: read # for actions/checkout
   pull-requests: read # for amannn/action-semantic-pull-request to check PR details
diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml
index 1c179ac829..9f97b0543b 100644
--- a/.github/workflows/stale.yml
+++ b/.github/workflows/stale.yml
@@ -3,6 +3,11 @@ on:
   schedule:
     - cron: "30 1 * * *"
   workflow_dispatch:
+
+concurrency:
+  group: ${{ github.workflow }}
+  cancel-in-progress: true
+
 permissions: {}
 jobs:
   stale:
diff --git a/.github/workflows/terraform.yml b/.github/workflows/terraform.yml
index 8ecd94e9ee..6e88604987 100644
--- a/.github/workflows/terraform.yml
+++ b/.github/workflows/terraform.yml
@@ -6,6 +6,10 @@ on:
   pull_request:
     paths: ["**/*.tf", "**/*.hcl", ".github/workflows/terraform.yml"]
 
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
 permissions:
   contents: read
 
diff --git a/.github/workflows/update-docs.yml b/.github/workflows/update-docs.yml
index 47ddec0c47..013a0cefbd 100644
--- a/.github/workflows/update-docs.yml
+++ b/.github/workflows/update-docs.yml
@@ -6,6 +6,10 @@ on:
       - "**/*.md"
       - ".github/workflows/update-docs.yml"
 
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
 permissions:
   contents: read
 
diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml
index 3c4c572cb0..1940d3478a 100644
--- a/.github/workflows/zizmor.yml
+++ b/.github/workflows/zizmor.yml
@@ -10,6 +10,10 @@ on:
     paths:
       - '.github/workflows/*.ya?ml'
 
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
 permissions: {}
 
 jobs:
diff --git a/.github/zizmor.yml b/.github/zizmor.yml
index cd892a2bbe..7dd9e3bdf2 100644
--- a/.github/zizmor.yml
+++ b/.github/zizmor.yml
@@ -12,3 +12,6 @@ rules:
   dangerous-triggers:
     ignore:
       - semantic-check.yml:2
+  concurrency-limits:
+    ignore:
+      - release.yml