build(deps): bump actions/checkout from 4 to 5 (#10)

dependabot[bot] · fabasoad · web-flow · commit dbd1410bf912 · 2025-09-13T00:06:35.000+09:00
* build(deps): bump actions/checkout from 4 to 5 Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v4...v5) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * ci: add workflow_dispatch --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: fabasoad <fabasoad@gmail.com>
diff --git a/.github/workflows/functional-tests.yml b/.github/workflows/functional-tests.yml
@@ -25,7 +25,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout ${{ github.repository }}
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - uses: ./
         id: pascal
         with:
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -6,6 +6,14 @@ on: # yamllint disable-line rule:truthy
   push:
     branches:
       - main
+  workflow_dispatch:
+    inputs:
+      security-type:
+        description: What Security scanning you would like to run?
+        required: false
+        default: "all"
+        type: choice
+        options: ["all", "sca", "code-scanning", "image"]
 
 jobs:
   build-image:
@@ -15,7 +23,7 @@ jobs:
       artifact-name: "${{ steps.artifact.outputs.name }}"
     steps:
       - name: Checkout ${{ github.repository }}
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
       - name: Build image
         id: build-image
         uses: docker/build-push-action@v6
@@ -45,7 +53,7 @@ jobs:
       security-events: write
     uses: fabasoad/reusable-workflows/.github/workflows/wf-security-sast.yml@main
     with:
-      code-scanning: true
-      image: true
+      code-scanning: ${{ (inputs.security-type || 'all') == 'all' || inputs.security-type == 'code-scanning' }}
+      image: ${{ (inputs.security-type || 'all') == 'all' || inputs.security-type == 'image' }}
       image-artifact-name: "${{ needs.build-image.outputs.artifact-name }}"
-      sca: true
+      sca: ${{ (inputs.security-type || 'all') == 'all' || inputs.security-type == 'sca' }}
diff --git a/README.md b/README.md
@@ -60,3 +60,7 @@ jobs:
 Run echo "Hello World!"
 Hello World!
 ```
+
+## Contributions
+
+![Alt](https://repobeats.axiom.co/api/embed/c243117fc32fc6c2d68502024a4bb56e0d1f792d.svg "Repobeats analytics image")
