diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 9cb74b0..2421b08 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -12,7 +12,7 @@ on:
 
 jobs:
   analyze:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     permissions:
       actions: read
       contents: read
diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml
index 4fe708f..fc3e8e9 100644
--- a/.github/workflows/docs.yml
+++ b/.github/workflows/docs.yml
@@ -17,7 +17,7 @@ jobs:
   docs:
     # Disables this workflow from running in a repository that is not part of the indicated organization/user
     if: github.repository_owner == 'afuetterer'
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     permissions:
       contents: write
     steps:
diff --git a/.github/workflows/label.yml b/.github/workflows/label.yml
index f511d68..a2a3711 100644
--- a/.github/workflows/label.yml
+++ b/.github/workflows/label.yml
@@ -16,7 +16,7 @@ jobs:
   label:
     permissions:
       issues: write
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
     - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
     - name: Run GitHub Labeler
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index d7bc55b..da86e6d 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -22,7 +22,7 @@ jobs:
   release:
     # disables this workflow from running in a repository that is not part of the indicated organization/user
     if: github.repository_owner == 'afuetterer'
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     needs:
     - test
     steps:
diff --git a/.github/workflows/pr.yml b/.github/workflows/pr.yml
index 59caa1b..a36aba6 100644
--- a/.github/workflows/pr.yml
+++ b/.github/workflows/pr.yml
@@ -32,7 +32,7 @@ jobs:
     needs:
     - test
     - docs
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
     - uses: re-actors/alls-green@05ac9388f0aebcb5727afa17fcccfecd6f8ec5fe # v1.2.2
       with:
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
index a3781c1..d286b03 100644
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -3,7 +3,7 @@ name: Publish package to PyPI
 on:
   release:
     types: [created]
-  workflow_dispatch:
+  workflow_dispatch: # run manually from actions tab
 
 permissions:
   contents: read
@@ -12,7 +12,7 @@ jobs:
   publish:
     # disables this workflow from running in a repository that is not part of the indicated organization/user
     if: github.repository_owner == 'afuetterer'
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     environment: publish
     permissions:
       id-token: write
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 4e40c2b..97e19f5 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -18,7 +18,7 @@ permissions: read-all
 jobs:
   analysis:
     name: Scorecard analysis
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     permissions:
       # Needed if using Code scanning alerts
       security-events: write
diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml
index 5fa9db9..ab3c25c 100644
--- a/.github/workflows/stale.yml
+++ b/.github/workflows/stale.yml
@@ -5,15 +5,14 @@ on:
   schedule:
     # run once a week at midnight of sunday
   - cron: 0 0 * * 0
-  # run manually from actions tab
-  workflow_dispatch:
+  workflow_dispatch: # run manually from actions tab
 
 permissions:
   contents: read
 
 jobs:
   stale:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     permissions:
       issues: write
       pull-requests: write
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index aa98a0b..0275321 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -13,7 +13,7 @@ permissions:
 jobs:
   test:
     name: Python ${{ matrix.python-version }}
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     strategy:
       matrix:
         python-version: ['3.10', '3.11', '3.12']
@@ -93,7 +93,8 @@ jobs:
 
   build-inspect:
     name: Build and inspect the package
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
+    - run: sudo apt-get install tree # workaround for "tree: command not found" in baipp
     - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
     - uses: hynek/build-and-inspect-python-package@4aea7de65ba374f49b5f549cd471b61de2ef19d3 # v2.5.0
diff --git a/.github/workflows/upgrade-requirements.yml b/.github/workflows/upgrade-requirements.yml
index a56d294..931d993 100644
--- a/.github/workflows/upgrade-requirements.yml
+++ b/.github/workflows/upgrade-requirements.yml
@@ -8,8 +8,7 @@ on:
   schedule:
     # run once a month at midnight of the first day of the month
   - cron: 0 0 1 * *
-  # run manually from actions tab
-  workflow_dispatch:
+  workflow_dispatch: # run manually from actions tab
 
 permissions:
   contents: read
@@ -20,7 +19,7 @@ jobs:
       contents: write # for peter-evans/create-pull-request to create branch
       pull-requests: write # for peter-evans/create-pull-request to create a PR
     name: Upgrade requirements
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-24.04
     steps:
     - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
     - name: Install uv