Update MegaLinter and checkout action versions for consistency

[Klintrup]

This pull request updates dependencies in the .github/workflows/megalinter.yml workflow file to use specific commit hashes for improved reliability and traceability.

Dependency updates:

• Updated the actions/checkout step to reference a specific commit hash (08c6903cd8c0fde910a37f88322edcfb5dd907a8) for version 5.0.0, instead of the generic @v5 tag.
• Updated the oxsecurity/megalinter/flavors/documentation action to reference a specific commit hash (0dcbedd66ea456ba2d54fd350affaa15df8a0da3) for version 9.0.1, instead of the generic @v9 tag.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

✅MegaLinter analysis: Success

Descriptor	Linter	Files	Fixed	Errors	Warnings	Elapsed time
✅ BASH	bash-exec	1		0	0	0.25s
✅ BASH	shellcheck	1		0	0	0.06s
✅ BASH	shfmt	1	0	0	0	0.02s
✅ COPYPASTE	jscpd	yes		no	no	1.33s
✅ MARKDOWN	markdownlint	2	0	0	0	0.56s
✅ MARKDOWN	markdown-table-formatter	3	0	0	0	0.26s
✅ REPOSITORY	gitleaks	yes		no	no	0.13s
✅ REPOSITORY	git_diff	yes		no	no	0.27s
✅ REPOSITORY	grype	yes		no	no	24.98s
✅ REPOSITORY	syft	yes		no	no	1.04s
✅ REPOSITORY	trivy	yes		no	no	4.56s
✅ REPOSITORY	trivy-sbom	yes		no	no	0.1s
✅ REPOSITORY	trufflehog	yes		no	no	2.17s

See detailed reports in MegaLinter artifacts

Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)

• Documentation: Custom Flavors
• Command: npx mega-linter-runner@9.0.1 --custom-flavor-setup --custom-flavor-linters BASH_EXEC,BASH_SHELLCHECK,BASH_SHFMT,COPYPASTE_JSCPD,MARKDOWN_MARKDOWNLINT,MARKDOWN_MARKDOWN_TABLE_FORMATTER,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_GRYPE,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG