From 0b891762dcc68a6bf53498b8eef1eaadbf62deb1 Mon Sep 17 00:00:00 2001 From: Kobi Hikri Date: Wed, 15 Jul 2026 20:44:57 +0300 Subject: [PATCH] Pin sonarqube-scan-action to a full commit SHA (v8.2.1) --- .github/workflows/sonarqube-scan.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sonarqube-scan.yml b/.github/workflows/sonarqube-scan.yml index 77b37441c74..1e793de66b7 100644 --- a/.github/workflows/sonarqube-scan.yml +++ b/.github/workflows/sonarqube-scan.yml @@ -52,7 +52,7 @@ jobs: sed -i "s/%VERSION%/${APP_LONG_VERSION}/g" sonar-project.properties - name: SonarQube Scan - uses: sonarsource/sonarqube-scan-action@master + uses: sonarsource/sonarqube-scan-action@22918119ff8e1ca75a623e15c8296b6ea4fbe28f # v8.2.1 env: SONAR_TOKEN: ${{ secrets.SONARQUBE_TOKEN }} SONAR_HOST_URL: ${{ secrets.SONARQUBE_HOST }}