Bump sonarsource/sonarcloud-github-action from 2.2.0 to 2.3.0 (#1730)

Bumps [sonarsource/sonarcloud-github-action](https://github.com/sonarsource/sonarcloud-github-action) from 2.2.0 to 2.3.0. - [Release notes](https://github.com/sonarsource/sonarcloud-github-action/releases) - [Commits](https://github.com/sonarsource/sonarcloud-github-action/compare/v2.2.0...v2.3.0) --- updated-dependencies: - dependency-name: sonarsource/sonarcloud-github-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-13 14:37:46 +00:00 · 2024-06-13 14:37:46 +00:00 · 1e18c86c44
parent 613d09c958
commit 1e18c86c44
1 changed files with 2 additions and 2 deletions
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@ -301,7 +301,7 @@ jobs:
        uses: codecov/codecov-action@v4.4.1

      - name: SonarCloud Scan
-        uses: sonarsource/sonarcloud-github-action@v2.2.0
+        uses: sonarsource/sonarcloud-github-action@v2.3.0
        # thought about just skipping dependabot
        # if: ${{ github.actor != 'dependabot[bot]' }}
        # but figured all pull requests seems better, since none of them will have access to sonarcloud.
@ -364,7 +364,7 @@ jobs:
        # if: ${{ github.event_name != 'pull_request' }}
        # so just skip everything but main
        if: github.ref_name == 'main'
-        uses: sonarsource/sonarcloud-github-action@v2.2.0
+        uses: sonarsource/sonarcloud-github-action@v2.3.0
        with:
          projectBaseDir: spiffworkflow-frontend
        env: