Update sources of generated workflows

pr-checks/checks/submit-sarif-failure.yml

@@ -19,7 +19,7 @@ permissions:
   security-events: write # needed to upload the SARIF file
 
 steps:
-  - uses: actions/checkout@v4
+  - uses: actions/checkout@v5
   - uses: ./init
     with:
       languages: javascript

pr-checks/checks/with-checkout-path.yml

@@ -13,7 +13,7 @@ steps:
       rm -rf ./* .github .git
   # Check out the actions repo again, but at a different location.
   # choose an arbitrary SHA so that we can later test that the commit_oid is not from main
-  - uses: actions/checkout@v4
+  - uses: actions/checkout@v5
     with:
       ref: 474bbf07f9247ffe1856c6a0f94aeeb10e7afee6
       path: x/y/z/some-path

pr-checks/sync.py

@@ -92,7 +92,7 @@ for file in (this_dir / 'checks').glob('*.yml'):
     steps = [
         {
             'name': 'Check out repository',
-            'uses': 'actions/checkout@v4'
+            'uses': 'actions/checkout@v5'
         },
         {
             'name': 'Prepare test',

src/init-action-post-helper.test.ts

@@ -80,7 +80,7 @@ test("uploads failed SARIF run with `diagnostics export` if feature flag is off"
   const actionsWorkflow = createTestWorkflow([
     {
       name: "Checkout repository",
-      uses: "actions/checkout@v4",
+      uses: "actions/checkout@v5",
     },
     {
       name: "Initialize CodeQL",
@@ -104,7 +104,7 @@ test("uploads failed SARIF run with `diagnostics export` if the database doesn't
   const actionsWorkflow = createTestWorkflow([
     {
       name: "Checkout repository",
-      uses: "actions/checkout@v4",
+      uses: "actions/checkout@v5",
     },
     {
       name: "Initialize CodeQL",
@@ -131,7 +131,7 @@ test("uploads failed SARIF run with database export-diagnostics if the database
   const actionsWorkflow = createTestWorkflow([
     {
       name: "Checkout repository",
-      uses: "actions/checkout@v4",
+      uses: "actions/checkout@v5",
     },
     {
       name: "Initialize CodeQL",
@@ -188,7 +188,7 @@ for (const { uploadInput, shouldUpload } of UPLOAD_INPUT_TEST_CASES) {
     const actionsWorkflow = createTestWorkflow([
       {
         name: "Checkout repository",
-        uses: "actions/checkout@v4",
+        uses: "actions/checkout@v5",
       },
       {
         name: "Initialize CodeQL",
@@ -223,7 +223,7 @@ test("uploading failed SARIF run succeeds when workflow uses an input with a mat
   const actionsWorkflow = createTestWorkflow([
     {
       name: "Checkout repository",
-      uses: "actions/checkout@v4",
+      uses: "actions/checkout@v5",
     },
     {
       name: "Initialize CodeQL",
@@ -250,7 +250,7 @@ test("uploading failed SARIF run fails when workflow uses a complex upload input
   const actionsWorkflow = createTestWorkflow([
     {
       name: "Checkout repository",
-      uses: "actions/checkout@v4",
+      uses: "actions/checkout@v5",
     },
     {
       name: "Initialize CodeQL",
@@ -281,7 +281,7 @@ test("uploading failed SARIF run fails when workflow does not reference github/c
   const actionsWorkflow = createTestWorkflow([
     {
       name: "Checkout repository",
-      uses: "actions/checkout@v4",
+      uses: "actions/checkout@v5",
     },
   ]);
   const result = await testFailedSarifUpload(t, actionsWorkflow, {