Upgrade: [dependabot] - bump SonarSource/sonarqube-scan-action from 6.0.0 to 7.0.0
Open
Number: #32
Type: Pull Request
State: Open
Type: Pull Request
State: Open
Author:
![dependabot[bot]](https://github.com/dependabot.png)
dependabot[bot]
Association: Unknown
Comments: 3
dependabot[bot]Association: Unknown
Comments: 3
Created:
December 11, 2025 at 06:07 PM UTC
(6 months ago)
(6 months ago)
Updated:
December 14, 2025 at 12:00 PM UTC
(6 months ago)
(6 months ago)
Labels:
dependencies github_actions
dependencies github_actions
Description:
Bumps SonarSource/sonarqube-scan-action from 6.0.0 to 7.0.0.
Release notes
Sourced from SonarSource/sonarqube-scan-action's releases.
v7.0.0
What's Changed
- SQSCANGHA-120 NO-JIRA Bump actions/setup-node from 4 to 5 by
@dependabot[bot] in SonarSource/sonarqube-scan-action#211- Update SonarScanner CLI to 7.3.0.5189 by
@github-actions[bot] in SonarSource/sonarqube-scan-action#212- SQSCANGHA-122 Include caveats for running SCA by
@subdavisin SonarSource/sonarqube-scan-action#213- SQSCANGHA-123 NO-JIRA Bump actions/setup-node from 5 to 6 by
@dependabot[bot] in SonarSource/sonarqube-scan-action#214- SQSCANGHA-126 Update SonarScanner CLI to 8.0.1.6346 by
@github-actions[bot] in SonarSource/sonarqube-scan-action#218New Contributors
@subdavismade their first contribution in SonarSource/sonarqube-scan-action#213Full Changelog: https://github.com/SonarSource/sonarqube-scan-action/compare/v6.0.0...v7.0.0
Commits
a31c939SQSCANGHA-126 Update SonarScanner CLI to 8.0.1.6346 (#218)40f5b61SQSCANGHA-123 NO-JIRA Bump actions/setup-node from 5 to 6 (#214)9bf7c12SQSCANGHA-122 Include caveats for running SCA (#213)ba6563cUpdate SonarScanner CLI to 7.3.0.5189 (#212)5ffbad4SQSCANGHA-120 Bump actions/setup-node from 4 to 5 (#211)- See full diff in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Package Dependencies
Package:
SonarSource/sonarqube-scan-action
Ecosystem:
actions
actions
Version Change:
6.0.0 → 7.0.0
Update Type:
Major
Major
Technical Details
| ID: | 11918062 |
| UUID: | 3720439885 |
| Node ID: | PR_kwDOQVmwD864aX30 |
| Host: | GitHub |
| Repository: | NHSDigital/eps-common-workflows |