Merge pull request #311 from arnested/dependabot/github_actions/actions/checkout-6

Bump actions/checkout from 5 to 6

Author: arnested

.github/workflows/build.yml

@@ -11,7 +11,7 @@ jobs:
       minimal: ${{ steps.go-version.outputs.minimal }}
       matrix: ${{ steps.go-version.outputs.matrix }}
     steps:
-    - uses: actions/checkout@v5
+    - uses: actions/checkout@v6
     - uses: arnested/go-version-action@v1
       id: go-version
   go_generate:
@@ -21,7 +21,7 @@ jobs:
     env:
       workdir: go/src/${{ github.repository }}
     steps:
-    - uses: actions/checkout@v5
+    - uses: actions/checkout@v6
       with:
         path: ${{env.workdir}}
     - name: Install Go ${{ needs.go-version.outputs.minimal }}
@@ -46,7 +46,7 @@ jobs:
       matrix:
         go-version: ${{ fromJSON(needs.go-version.outputs.matrix) }}
     steps:
-    - uses: actions/checkout@v5
+    - uses: actions/checkout@v6
     - name: Install Go ${{ matrix.go-version }}
       uses: WillAbides/[email protected]
       with:

.github/workflows/dependency-review.yml

@@ -9,7 +9,7 @@ jobs:
     runs-on: ubuntu-22.04
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@v4
         with:

.github/workflows/docker-image-security-scan.yml

@@ -9,7 +9,7 @@ jobs:
     if: '!github.event.deleted'
     runs-on: ubuntu-22.04
     steps:
-    - uses: actions/checkout@v5
+    - uses: actions/checkout@v6
     - name: Set up Docker Buildx
       id: buildx
       uses: docker/setup-buildx-action@master

.github/workflows/lint.yml

@@ -9,7 +9,7 @@ jobs:
     name: dockerfile
     runs-on: ubuntu-22.04
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
       - name: Run hadolint
         uses: hadolint/[email protected]
         with:
@@ -19,15 +19,15 @@ jobs:
     name: markdown
     runs-on: ubuntu-22.04
     steps:
-    - uses: actions/checkout@v5
+    - uses: actions/checkout@v6
     - name: Run markdownlint
       uses: DavidAnson/markdownlint-cli2-action@v21
 
   golangci:
     name: lint
     runs-on: ubuntu-22.04
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
       - uses: arnested/go-version-action@v1
         id: go-version
       - name: Install Go ${{ steps.go-version.outputs.minimal }}

.github/workflows/release.yml

@@ -15,7 +15,7 @@ jobs:
   bump-version:
     runs-on: ubuntu-22.04
     steps:
-    - uses: actions/checkout@v5
+    - uses: actions/checkout@v6
       with:
         fetch-depth: 0
     - uses: arnested/go-version-action@v1
@@ -97,7 +97,7 @@ jobs:
     name: Docker build and push
     runs-on: ubuntu-22.04
     steps:
-    - uses: actions/checkout@v5
+    - uses: actions/checkout@v6
     - name: Set up Docker Buildx
       id: buildx
       uses: docker/setup-buildx-action@master

.github/workflows/security.yml

@@ -21,7 +21,7 @@ jobs:
       GO111MODULE: on
     steps:
       - name: Checkout Source
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
       - name: Run Gosec Security Scanner
         uses: securego/gosec@master
         with:
@@ -35,7 +35,7 @@ jobs:
     name: Govulncheck
     runs-on: ubuntu-22.04
     steps:
-    - uses: actions/checkout@v5
+    - uses: actions/checkout@v6
     - uses: arnested/go-version-action@v1
       id: go-version
       with:
@@ -46,6 +46,7 @@ jobs:
         go-version-input: ${{ steps.go-version.outputs.latest }}
         output-format: sarif
         output-file: results.sarif
+        repo-checkout: false
     - name: Fix SARIF format
       run: yq --inplace --output-format json '.runs |= map ({"results":[]} + .)' results.sarif
     - name: Upload SARIF file