chore(deps): update actions/checkout action to v4.2.0 in .github/workflows/scorecard.yml #463

	# For most projects, this workflow file will not need changing; you simply need
	# to commit it to your repository.
	#
	# You may wish to alter this file to override the set of languages analyzed,
	# or to provide custom queries or build logic.
	#
	# ****** NOTE ******
	# We have attempted to detect the languages in your repository. Please check
	# the `language` matrix defined below to confirm you have the correct set of
	# supported CodeQL languages.
	#
	name: "CodeQL"

	# default token permissions: none
	permissions: {}

	on:
	push:
	branches: [ main ]
	pull_request:
	# The branches below must be a subset of the branches above
	branches: [ main ]
	schedule:
	- cron: '33 8 * * 4'

	jobs:
	analyze:
	name: Analyze
	runs-on: ubuntu-latest
	permissions:
	# required for all workflows
	security-events: write

	strategy:
	fail-fast: false
	matrix:
	language: [ 'go' ]

	steps:
	- name: Checkout repository
	uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0

	- name: Install Go
	uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
	with:
	go-version-file: go.mod

	# Initializes the CodeQL tools for scanning.
	- name: Initialize CodeQL
	uses: github/codeql-action/init@461ef6c76dfe95d5c364de2f431ddbd31a417628 # v3.26.9
	with:
	languages: ${{ matrix.language }}

	- name: Autobuild
	uses: github/codeql-action/autobuild@461ef6c76dfe95d5c364de2f431ddbd31a417628 # v3.26.9

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/autobuild@461ef6c76dfe95d5c364de2f431ddbd31a417628 # v3.26.9

Provide feedback