[8.19] (backport #9413) build(deps): bump actions/checkout from 4 to 5

.github/workflows/bump-agent-versions.yml

@@ -15,7 +15,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
         with:
           # no depth limit
           # so, we can generate snapshot versions based on release branches

.github/workflows/bump-beats-version.yml

@@ -37,7 +37,7 @@ jobs:
       fail-fast: false
       matrix: ${{ fromJson(needs.filter.outputs.matrix) }}
     steps:
-    - uses: actions/checkout@v4
+    - uses: actions/checkout@v5
       with:
         ref: ${{ matrix.branch }}
 

.github/workflows/bump-golang.yml

@@ -19,7 +19,7 @@ jobs:
       pull-requests: write
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
 
       - uses: elastic/oblt-actions/updatecli/run@v1
         with:

.github/workflows/bump-otel-version.yml

@@ -22,7 +22,7 @@ jobs:
       matrix:
         branch: ["main", "8.19"]
     steps:
-    - uses: actions/checkout@v4
+    - uses: actions/checkout@v5
 
     - name: Set up Go
       uses: actions/setup-go@v5

.github/workflows/bump-vm-images.yml

@@ -40,7 +40,14 @@ jobs:
       fail-fast: false
       matrix: ${{ fromJson(needs.filter.outputs.matrix) }}
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
+        with:
+          # NOTE: as long as the updatecli bump differs between branches, we need to
+          # checkout the branch that we are going to bump that we are going to bump
+          # this is needed to ensure that the updatecli bump is done against the correct updatecli
+          # pipeline. For instance, https://github.com/elastic/elastic-agent/pull/8035 was not
+          # backported to the short lived branches.
+          ref: ${{ matrix.branch }}
 
       - uses: elastic/oblt-actions/updatecli/run@v1
         with:
@@ -55,4 +62,4 @@ jobs:
         with:
           bot-token: ${{ secrets.SLACK_BOT_TOKEN }}
           channel-id: "#ingest-notifications"
-          message: ":traffic_cone: updatecli failed for `${{ github.repository }}@${{ github.ref_name }}`, @robots-ci please look what's going on <${{ env.JOB_URL }}|here>"
+          message: ":traffic_cone: updatecli failed for `${{ github.repository }}@${{ github.ref_name }}`[${{ matrix.branch }}], @robots-ci please look what's going on <${{ env.JOB_URL }}|here>"

.github/workflows/fragment-in-pr.yml

@@ -8,7 +8,7 @@ jobs:
     if: "!contains(github.event.pull_request.labels.*.name, 'skip-changelog') && !contains(github.event.pull_request.labels.*.name, 'backport')"
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v4
+    - uses: actions/checkout@v5
     - uses: actions/setup-go@v5
       with:
         go-version-file: .go-version

.github/workflows/golangci-lint.yml

@@ -18,7 +18,7 @@ jobs:
     name: lint
     runs-on: ${{  matrix.os }}
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
 
       - uses: actions/setup-go@v5
         with:

.github/workflows/post-dependabot.yml

@@ -16,7 +16,7 @@ jobs:
       contents: write
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
 
       - uses: actions/setup-go@v5
         with:

.github/workflows/updatecli-compose.yml

@@ -17,7 +17,7 @@ jobs:
       packages: read
       pull-requests: write
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
 
       - uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
         with: