chore(deps): bump actions/checkout from 5 to 6 #1093

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open

dependabot wants to merge 1 commit into main from dependabot/github_actions/actions/checkout-6

Open

chore(deps): bump actions/checkout from 5 to 6 #1093

chore(deps): bump actions/checkout from 5 to 6

GitHub Advanced Security / Scorecard completed Mar 30, 2026 in 3s

1 configuration not found

Warning: Code scanning may not have found all the alerts introduced by this pull request, because 1 configuration present on refs/heads/main was not found:

Actions workflow (`scorecard-analysis.yml`)

❓ supply-chain/branch-protection

New alerts in code changed by this pull request

Security Alerts:

21 medium

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 43 in .github/workflows/action-build.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 20 in .github/workflows/action-check.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 17 in .github/workflows/action-test-image.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 20 in .github/workflows/action-test-k3s.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 26 in .github/workflows/action-test-kind.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 20 in .github/workflows/action-test-smoke.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 27 in .github/workflows/benchmarks.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 61 in .github/workflows/benchmarks.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 98 in .github/workflows/benchmarks.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 131 in .github/workflows/benchmarks.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 26 in .github/workflows/ci.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 161 in .github/workflows/ci.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 174 in .github/workflows/ci.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 184 in .github/workflows/ci.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 196 in .github/workflows/ci.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 17 in .github/workflows/docs.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 31 in .github/workflows/docs.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 15 in .github/workflows/labeler.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 33 in .github/workflows/release-wasi-demo-app.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 59 in .github/workflows/release.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue

Check warning on line 135 in .github/workflows/release.yml

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 1: GitHub-owned GitHubAction not pinned by hash
Click Remediation section below to solve this issue