SQSCANGHA-121 Add vulnerability warning

aleksandra-bozhinoska-sonarsource · aleksandra-bozhinoska-sonarsource · commit 2f77a1ec69fb · 2025-09-24T17:48:09.000+02:00
diff --git a/action.yml b/action.yml
@@ -31,6 +31,9 @@ runs:
       env:
         INPUT_PROJECTBASEDIR: ${{ inputs.projectBaseDir }}
         INPUT_SCANNERVERSION: ${{ inputs.scannerVersion }}
+    - name: Vulnerability warning
+      shell: bash
+      run: echo "::warning title=Vulnerability warning::This version of the SonarQube Scanner GitHub Action is no longer supported and contains a security vulnerability. Please update your workflow to use sonarsource/sonarqube-scan-action@v6 for the latest security patches and features. For more information visit https://community.sonarsource.com/gha-v6-update"
     - name: Load Sonar Scanner CLI from cache
       id: sonar-scanner-cli
       uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 #v4.2.4
