Bump actions/checkout from 2.3.5 to 2.4.0

[dependabot[bot]]

Bumps actions/checkout from 2.3.5 to 2.4.0.

Release notes

Sourced from actions/checkout's releases.

v2.4.0

• Convert SSH URLs like org-<ORG_ID>@github.com: to https://github.com/ - pr

Commits

• ec3a7ce set insteadOf url for org-id (#621)
• fd47087 codeql should analyze lib not dist (#620)
• 3d677ac script to generate license info (#614)
• 826ba42 npm audit fix (#612)
• eb8a193 update dev dependencies and react to new linting rules (#611)
• c49af7c Create codeql-analysis.yml (#602)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)