The actions actions/checkout@v5, aquasecurity/[email protected], and github/codeql-action/upload-sarif@v4 are not allowed in gin-gonic/gin because all actions must be from a repository owned by gin-gonic.