chore(deps): bump SonarSource/sonarqube-scan-action from 5.3.0 to 5.3.1 in /.github/workflows
Merged
Number: #534
Type: Pull Request
State: Merged
Type: Pull Request
State: Merged
Author:
![dependabot[bot]](https://github.com/dependabot.png)
dependabot[bot]
Association: Contributor
Comments: 3
dependabot[bot]Association: Contributor
Comments: 3
Created:
August 29, 2025 at 04:05 PM UTC
(10 months ago)
(10 months ago)
Updated:
August 29, 2025 at 04:50 PM UTC
(10 months ago)
(10 months ago)
Merged:
August 29, 2025 at 04:50 PM UTC
(10 months ago)
by vil02
(10 months ago)
by vil02
Time to Close:
about 1 hour
Labels:
dependencies github_actions
dependencies github_actions
Description:
Bumps SonarSource/sonarqube-scan-action from 5.3.0 to 5.3.1.
Release notes
Sourced from SonarSource/sonarqube-scan-action's releases.
v5.3.1
What's Changed
- Fix the scanner-update script by
@henryjuin SonarSource/sonarqube-scan-action#194- SQSCANGHA-100 NO-JIRA Bump actions/checkout from 4 to 5 by
@dependabot[bot] in SonarSource/sonarqube-scan-action#197- SQSCANGHA-101 Add more input injection tests by
@aleksandra-bozhinoska-sonarsourcein SonarSource/sonarqube-scan-action#200- pin actions/cache to a full-length commit SHA by
@daantimmerin SonarSource/sonarqube-scan-action#199New Contributors
@daantimmermade their first contribution in SonarSource/sonarqube-scan-action#199Full Changelog: https://github.com/SonarSource/sonarqube-scan-action/compare/v5...v5.3.1
Commits
1a6d90eSQSCANGHA-102 Pin actions/cache to a full-length commit SHA (#199)016cabfSQSCANGHA-101 Add more command injection tests5fc8cfcSQSCANGHA-101 Fix sha256 check in QA Deprecated C/C++ action786af10NO-JIRA Bump actions/checkout from 4 to 501850e2SQSCANGHA-94 Fix the scanner-update workflow- See full diff in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Pull Request Statistics
Commits:
1
1
Files Changed:
1
1
Additions:
+1
+1
Deletions:
-1
-1
Package Dependencies
Package:
SonarSource/sonarqube-scan-action
Ecosystem:
actions
actions
Version Change:
5.3.0 → 5.3.1
Update Type:
Patch
Patch
Path:
/.github/workflows
Technical Details
| ID: | 5969785 |
| UUID: | 2785322285 |
| Node ID: | PR_kwDOGicQ5c6mBKUt |
| Host: | GitHub |
| Repository: | vil02/string_to_code_proj |
| Merge State: | Unknown |