chore(deps): update sonarsource/sonarqube-scan-action action to v4

SchweizerischeBundesbahnen · Dec 16, 2024 · db32914 · db32914
1 parent 69e8537
commit db32914
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/.github/workflows/poetry-build.yml b/.github/workflows/poetry-build.yml
@@ -26,7 +26,7 @@ jobs:
       - name: 🧪 Run tests
         run: poetry run tox
       - name: SonarCloud scan for PR
-        uses: sonarsource/sonarqube-scan-action@v3.1.0
+        uses: sonarsource/sonarqube-scan-action@1b442ee39ac3fa7c2acdd410208dcb2bcfaae6c4 # v4.1.0
         if: github.event_name == 'pull_request'
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}  # Needed to get PR information
@@ -37,7 +37,7 @@ jobs:
             -Dsonar.pullrequest.branch=${{ github.head_ref }}
             -Dsonar.pullrequest.key=${{ github.event.pull_request.number }}
       - name: SonarCloud scan for Push
-        uses: sonarsource/sonarqube-scan-action@v3.1.0
+        uses: sonarsource/sonarqube-scan-action@1b442ee39ac3fa7c2acdd410208dcb2bcfaae6c4 # v4.1.0
         if: github.event_name == 'push'
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}  # Needed to get PR information