History

Michael Seele f6a9668f6e All checks were successful validate-shared-actions / validate-shared-actions (pull_request) Successful in 1m26s Details Aikido Security PR Check / Aikido Security Scan (pull_request) Successful in 1m43s Details fix: downgrade checkout ...to avoid usage of node24 - not supported from stackit right now		2026-05-04 13:34:39 +00:00
..
action.yml	fix: downgrade checkout	2026-05-04 13:34:39 +00:00
README.md	fix: correct paths	2026-04-30 13:17:44 +02:00

checkout

Composite wrapper around actions/checkout pinned to a specific commit SHA to prevent supply chain attacks via tag or branch hijacking.

Inputs

Input	Required	Default	Description
`ref`	No	`''`	Branch, tag, or SHA to checkout
`repository`	No	`${{ github.repository }}`	Repository name with owner
`token`	No	`${{ github.token }}`	Personal access token to fetch the repository
`path`	No	`''`	Relative path under `$GITHUB_WORKSPACE` to place the repository
`fetch-depth`	No	`1`	Number of commits to fetch. `0` fetches all history
`submodules`	No	`false`	Whether to checkout submodules (`true`, `false`, or `recursive`)

- uses: https://schmalz-git.git.onstackit.cloud/schmalz/shared-actions/checkout@checkout-v1

Pinned to actions/checkout commit SHA de0fac2e (v6.0.2) to prevent supply chain attacks via tag or branch hijacking.