Skip to content

MPT-21857 pin SonarCloud scan action version#335

Merged
d3rky merged 1 commit into
mainfrom
bugfix/MPT-21857/sonarcloud-actions-use-master-actions-version-should-be-fixed
Jun 4, 2026
Merged

MPT-21857 pin SonarCloud scan action version#335
d3rky merged 1 commit into
mainfrom
bugfix/MPT-21857/sonarcloud-actions-use-master-actions-version-should-be-fixed

Conversation

@d3rky

@d3rky d3rky commented Jun 4, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

🤖 AI-generated PR — Please review carefully.

What changed

  • Pinned SonarSource/sonarqube-scan-action to v8.0.0 in PR validation workflow.
  • Pinned SonarSource/sonarqube-scan-action to v8.0.0 in main/release push workflow.
  • Verified every GitHub Actions uses reference under .github/workflows is versioned and no longer points to master/main.

Testing

  • make check-all

@d3rky d3rky requested a review from a team as a code owner June 4, 2026 13:39
@d3rky d3rky requested review from albertsola and alephsur June 4, 2026 13:39
@coderabbitai

coderabbitai Bot commented Jun 4, 2026
edited
Loading

Copy link
Copy Markdown

Warning

Review limit reached

@d3rky, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 4 minutes and 42 seconds. Learn how PR review limits work.

Your organization has run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info
⚙️ Run configuration

Configuration used: Repository YAML (base), Organization UI (inherited)

Review profile: CHILL

Plan: Pro

Run ID: f4d2858b-cc11-44fd-9d35-a6914adaa89f

📥 Commits

Reviewing files that changed from the base of the PR and between 1d8addd and a5e24c8.

📒 Files selected for processing (2)
  • .github/workflows/pull-request.yml
  • .github/workflows/push-release-branch.yml

Comment @coderabbitai help to get the list of available commands and usage tips.

@d3rky
fix: pin SonarCloud scan action version
a5e24c8 
Replace the floating SonarSource/sonarqube-scan-action master reference with the v8.0.0 release tag in PR and push workflows.
@d3rky d3rky force-pushed the bugfix/MPT-21857/sonarcloud-actions-use-master-actions-version-should-be-fixed branch from 5ae9edc to a5e24c8 Compare June 4, 2026 13:56
@sonarqubecloud

sonarqubecloud Bot commented Jun 4, 2026

Copy link
Copy Markdown

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@d3rky d3rky merged commit 89beae2 into main Jun 4, 2026
4 checks passed
@d3rky d3rky deleted the bugfix/MPT-21857/sonarcloud-actions-use-master-actions-version-should-be-fixed branch June 4, 2026 14:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@albertsola albertsola Awaiting requested review from albertsola albertsola is a code owner automatically assigned from softwareone-platform/sirius

@alephsur alephsur Awaiting requested review from alephsur alephsur is a code owner automatically assigned from softwareone-platform/sirius

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@d3rky