chore(deps): bump actions/checkout from 4 to 5 [skip ci]

mergify[bot] · web-flow · commit 038f19bed4cf · 2025-09-02T21:18:27.000Z
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5. Release notes *Sourced from [actions/checkout's releases](https://github.com/actions/checkout/releases).* > v5.0.0 > ------ > > What's Changed > -------------- > > * Update actions checkout to use node 24 by [`@​salmanmkc`](https://github.com/salmanmkc) in [actions/checkout#2226](https://redirect.github.com/actions/checkout/pull/2226) > * Prepare v5.0.0 release by [`@​salmanmkc`](https://github.com/salmanmkc) in [actions/checkout#2238](https://redirect.github.com/actions/checkout/pull/2238) > > ⚠️ Minimum Compatible Runner Version > ------------------------------------ > > **v2.327.1** > [Release Notes](https://github.com/actions/runner/releases/tag/v2.327.1) > > Make sure your runner is updated to this version or newer to use this release. > > **Full Changelog**: <actions/checkout@v4...v5.0.0> > > v4.3.0 > ------ > > What's Changed > -------------- > > * docs: update README.md by [`@​motss`](https://github.com/motss) in [actions/checkout#1971](https://redirect.github.com/actions/checkout/pull/1971) > * Add internal repos for checking out multiple repositories by [`@​mouismail`](https://github.com/mouismail) in [actions/checkout#1977](https://redirect.github.com/actions/checkout/pull/1977) > * Documentation update - add recommended permissions to Readme by [`@​benwells`](https://github.com/benwells) in [actions/checkout#2043](https://redirect.github.com/actions/checkout/pull/2043) > * Adjust positioning of user email note and permissions heading by [`@​joshmgross`](https://github.com/joshmgross) in [actions/checkout#2044](https://redirect.github.com/actions/checkout/pull/2044) > * Update README.md by [`@​nebuk89`](https://github.com/nebuk89) in [actions/checkout#2194](https://redirect.github.com/actions/checkout/pull/2194) > * Update CODEOWNERS for actions by [`@​TingluoHuang`](https://github.com/TingluoHuang) in [actions/checkout#2224](https://redirect.github.com/actions/checkout/pull/2224) > * Update package dependencies by [`@​salmanmkc`](https://github.com/salmanmkc) in [actions/checkout#2236](https://redirect.github.com/actions/checkout/pull/2236) > * Prepare release v4.3.0 by [`@​salmanmkc`](https://github.com/salmanmkc) in [actions/checkout#2237](https://redirect.github.com/actions/checkout/pull/2237) > > New Contributors > ---------------- > > * [`@​motss`](https://github.com/motss) made their first contribution in [actions/checkout#1971](https://redirect.github.com/actions/checkout/pull/1971) > * [`@​mouismail`](https://github.com/mouismail) made their first contribution in [actions/checkout#1977](https://redirect.github.com/actions/checkout/pull/1977) > * [`@​benwells`](https://github.com/benwells) made their first contribution in [actions/checkout#2043](https://redirect.github.com/actions/checkout/pull/2043) > * [`@​nebuk89`](https://github.com/nebuk89) made their first contribution in [actions/checkout#2194](https://redirect.github.com/actions/checkout/pull/2194) > * [`@​salmanmkc`](https://github.com/salmanmkc) made their first contribution in [actions/checkout#2236](https://redirect.github.com/actions/checkout/pull/2236) > > **Full Changelog**: <actions/checkout@v4...v4.3.0> > > v4.2.2 > ------ > > What's Changed > -------------- > > * `url-helper.ts` now leverages well-known environment variables by [`@​jww3`](https://github.com/jww3) in [actions/checkout#1941](https://redirect.github.com/actions/checkout/pull/1941) > * Expand unit test coverage for `isGhes` by [`@​jww3`](https://github.com/jww3) in [actions/checkout#1946](https://redirect.github.com/actions/checkout/pull/1946) > > **Full Changelog**: <actions/checkout@v4.2.1...v4.2.2> > > v4.2.1 > ------ > > What's Changed > -------------- > > * Check out other refs/\* by commit if provided, fall back to ref by [`@​orhantoy`](https://github.com/orhantoy) in [actions/checkout#1924](https://redirect.github.com/actions/checkout/pull/1924) > > New Contributors > ---------------- > > * [`@​Jcambass`](https://github.com/Jcambass) made their first contribution in [actions/checkout#1919](https://redirect.github.com/actions/checkout/pull/1919) > > **Full Changelog**: <actions/checkout@v4.2.0...v4.2.1> ... (truncated) Commits * [`08c6903`](actions/checkout@08c6903) Prepare v5.0.0 release ([#2238](https://redirect.github.com/actions/checkout/issues/2238)) * [`9f26565`](actions/checkout@9f26565) Update actions checkout to use node 24 ([#2226](https://redirect.github.com/actions/checkout/issues/2226)) * See full diff in [compare view](actions/checkout@v4...v5) [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility\_score?dependency-name=actions/checkout&package-manager=github\_actions&previous-version=4&new-version=5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
diff --git a/.github/workflows/auto-release.yml b/.github/workflows/auto-release.yml
@@ -10,7 +10,7 @@ jobs:
   check:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
       - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
       - uses: pre-commit/action@2c7b3805fd2a0fd8c1884dcaebf91fc102a13ecd # v3.0.1
 
@@ -30,7 +30,7 @@ jobs:
       DOCKER_REGISTRY: ghcr.io
 
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -16,7 +16,7 @@ jobs:
   check:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
       - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
       - uses: pre-commit/action@2c7b3805fd2a0fd8c1884dcaebf91fc102a13ecd # v3.0.1
 
@@ -29,7 +29,7 @@ jobs:
     needs: check
 
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
       - name: Cache local Maven repository
         uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4.2.4
         with:
diff --git a/.github/workflows/clean-code.yml b/.github/workflows/clean-code.yml
@@ -13,7 +13,7 @@ jobs:
   check:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
       - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
       - uses: pre-commit/action@2c7b3805fd2a0fd8c1884dcaebf91fc102a13ecd # v3.0.1
 
@@ -22,7 +22,7 @@ jobs:
     needs: check
 
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
       - name: Cache local Maven repository
         uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4.2.4
         with:
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -22,7 +22,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
 
       - name: Initialize CodeQL
         uses: github/codeql-action/init@3c3833e0f8c1c83d449a7478aa59c036a9165498 # v3.29.11
diff --git a/.github/workflows/kamal-deploy.yml b/.github/workflows/kamal-deploy.yml
@@ -29,7 +29,7 @@ jobs:
       KAMAL_REGISTRY_PASSWORD: ${{ secrets.KAMAL_REGISTRY_PASSWORD }}
       HOST_IP: ${{ secrets.HOST_IP }}
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
 
       - name: Install Kamal
         uses: ruby/setup-ruby@efbf473cab83af4468e8606cc33eca9281bb213f # v1.256.0
diff --git a/.github/workflows/merge-dependabot.yml b/.github/workflows/merge-dependabot.yml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
 
       - name: Auto-merge Dependabot PR
         run: |
diff --git a/.github/workflows/pre-commit-update.yml b/.github/workflows/pre-commit-update.yml
@@ -11,7 +11,7 @@ jobs:
   auto-update:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
       - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
       - uses: pre-commit/action@2c7b3805fd2a0fd8c1884dcaebf91fc102a13ecd # v3.0.1
       - run: pre-commit autoupdate --config .pre-commit-config.yaml
diff --git a/.github/workflows/webapp-ci.yml b/.github/workflows/webapp-ci.yml
@@ -20,7 +20,7 @@ jobs:
         working-directory: ./webapp
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
 
       - name: Setup Node.js
         uses: actions/setup-node@v4
