Skip to content

chore(deps): update actions/checkout action to v5 #2859

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 11, 2025
Merged

chore(deps): update actions/checkout action to v5 #2859

merged 1 commit into from
Aug 11, 2025

Conversation

thomhurst
Copy link
Owner

This PR contains the following updates:

Package Type Update Change
actions/checkout action major v4 -> v5

Release Notes

actions/checkout (actions/checkout)

v5

Compare Source

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

@thomhurst thomhurst added dependencies Pull requests that update a dependency file MAJOR renovate-bot labels Aug 11, 2025
@thomhurst thomhurst enabled auto-merge (squash) August 11, 2025 12:49
@claude Claude
Copy link
Contributor

claude bot commented Aug 11, 2025
edited
Loading

Claude finished @thomhurst's task —— View job

PR Review: Update actions/checkout v4 → v5

Todo List:

  • Examine all changed workflow files
  • Research actions/checkout v5 breaking changes
  • Check for security implications
  • Assess compatibility with current usage patterns
  • Provide comprehensive review feedback

Review Summary ✅

This PR is APPROVED with no issues found. The update from actions/checkout v4 to v5 is straightforward and safe.

Code Quality and Best Practices ✅

  • Clean Update: All 8 workflow files consistently updated from v4 to v5
  • Consistent Pattern: The change is uniform across all workflows, maintaining consistency
  • No Breaking Changes: actions/checkout v5 maintains backward compatibility with existing usage patterns

Potential Bugs or Issues ✅

No issues identified:

  • All existing parameters (fetch-depth, with configurations) remain compatible
  • Usage patterns like fetch-depth: 0, fetch-depth: 1 work identically in v5
  • No deprecated features used in current workflows

Performance Considerations ✅

Improvements expected:

  • actions/checkout v5 includes performance optimizations for large repositories
  • Better caching mechanisms for Git operations
  • No performance regressions anticipated

Security Concerns ✅

Security improvements:

  • v5 includes updated dependencies with security patches
  • No new security vulnerabilities introduced
  • Current permission configurations remain appropriate and secure
  • All workflows maintain proper permission scoping (contents: read, pull-requests: read, etc.)

Test Coverage ✅

Coverage maintained:

  • No test-related workflow logic affected
  • CI/CD pipelines (.github/workflows/dotnet.yml:29, speed-comparison.yml:22) will continue running normally
  • CodeQL security scanning (codeql.yml:58) remains functional

Specific Files Reviewed:

✅ .github/workflows/claude-code-review.yml:30 - Claude Code review workflow updated
✅ .github/workflows/claude.yml:29 - Claude Code action workflow updated
✅ .github/workflows/codeql.yml:58 - CodeQL security scanning updated
✅ .github/workflows/deploy-pages.yml:19 - GitHub Pages deployment updated
✅ .github/workflows/deploy-pages-test.yml - Pages test deployment updated
✅ .github/workflows/dotnet.yml:29 - Main .NET CI pipeline updated
✅ .github/workflows/generate-readme.yml:13 - README generation workflow updated
✅ .github/workflows/speed-comparison.yml:22,91 - Performance benchmarking workflows updated

Recommendation

✅ MERGE THIS PR - This is a safe dependency update that improves security and performance without breaking existing functionality.

@thomhurst thomhurst merged commit 02da514 into main Aug 11, 2025
9 checks passed
@thomhurst thomhurst deleted the renovate/actions-checkout-5.x branch August 11, 2025 13:14
This was referenced Aug 12, 2025
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Merged
Closed
Merged
Closed
Merged
Merged
Closed
Closed
Open
Open
Merged
This was referenced Aug 20, 2025
Merged
Merged
Closed
Merged
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Merged
Open
Closed
Closed
Closed
Merged
Open
Open
Closed
Closed
Closed
Open
Closed
Closed
Merged
This was referenced Sep 1, 2025
Open
Open
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file MAJOR renovate-bot
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@thomhurst @renovate-bot