chore(actions): update sonarsource/sonarqube-scan-action action to v5.3.2 - autoclosed

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
sonarsource/sonarqube-scan-action	action	minor	v5.0.0 → v5.3.2

---

Release Notes

sonarsource/sonarqube-scan-action (sonarsource/sonarqube-scan-action)

v5.3.2

Compare Source

Full Changelog: SonarSource/sonarqube-scan-action@v5.3.1...v5.3.2

v5.3.1

Compare Source

OVERLOOKED BREAKING CHANGE!

In order to prevent command-line injection, the way to parse the args input has been changed, but this is possibly a breaking change regarding support of quotes.

For example, if you were previously passing:

- uses: SonarSource/sonarqube-scan-action@<action version>
  with:
    args: >
      -Dsonar.projectName="My Project"

you should now pass:

- uses: SonarSource/sonarqube-scan-action@<action version>
  with:
    args: >
      "-Dsonar.projectName=My Project"

Edit: We have now released v6 that more accurately reflect this breaking change.

What's Changed

• SQSCANGHA-101 Add more input injection tests by @​aleksandra-bozhinoska-sonarsource in SonarSource#200

New Contributors

• @​daantimmer made their first contribution in SonarSource#199

Full Changelog: SonarSource/sonarqube-scan-action@v5...v5.3.1

v5.3.0

Compare Source

What's Changed

• SQSCANGHA-83 Avoid unbound variable error on parameter expansion by @​aleksandra-bozhinoska-sonarsource in SonarSource#192
• SQSCANGHA-97 Use /usr/bin/env for shebang by @​eliandoran in SonarSource#193
• SQSCANGHA-98 Update SonarScanner CLI to 7.2.0.5079 by @​github-actions[bot] in SonarSource#196

New Contributors

• @​eliandoran made their first contribution in SonarSource#193

Full Changelog: SonarSource/sonarqube-scan-action@v5.2.0...v5.3.0

v5.2.0

Compare Source

What's Changed

• SQSCANGHA-90 remove mend dead conf by @​pierre-guillot-gh in SonarSource#184
• SQSCANGHA-89 Attempt to fix command injection by @​henryju in SonarSource#186
• SQSCANGHA-93 Fix madhead/semver-utils' version by @​csaba-feher-sonarsource in SonarSource#187
• SQSCANGHA-94 Update version update logic by @​csaba-feher-sonarsource in SonarSource#188
• SQSCANGHA-92 Validate scanner version by @​csaba-feher-sonarsource in SonarSource#189

Full Changelog: SonarSource/sonarqube-scan-action@v5...v5.2.0

v5.1.0

Compare Source

What's Changed

• Update SonarScanner CLI to 7.1.0.4889 to support sonar.region=us by @​github-actions in SonarSource#183

Full Changelog: SonarSource/sonarqube-scan-action@v5.0.0...v5.1.0

---

Configuration

📅 Schedule: Branch creation - "before 12pm every weekday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.