From d882e874569f0b1f97964970c73df8a99fa50661 Mon Sep 17 00:00:00 2001
From: James <james.bradley7@nhs.net>
Date: Thu, 30 Apr 2026 16:19:52 +0100
Subject: [PATCH] mesh-2816: update pull-request.yaml to fix sonar scan for
 dependabot

---
 .github/workflows/pull-request.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml
index 3127870..c6be1e5 100644
--- a/.github/workflows/pull-request.yml
+++ b/.github/workflows/pull-request.yml
@@ -170,11 +170,11 @@ jobs:
         run: |
           PATH="$PWD/sonar-scanner/bin:$PATH"
           if [[ "${{ github.event_name }}" == "pull_request" ]]; then
-            git checkout "${{ github.event.pull_request.head.sha }}"
+            git checkout "${GITHUB_HEAD_REF}"
             sonar-scanner -Dsonar.pullrequest.branch="{{ github.event.pull_request.head.sha }}" -Dsonar.pullrequest.base="{{ github.event.pull_request.base.sha }}" -Dsonar.pullrequest.key="${{ github.event.number }}"
           else
             sonar-scanner
-          fi
+          fi    
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}