Bump org.sonarsource.scanner.maven:sonar-maven-plugin from 3.11.0.3922 to 4.0.0.4121

[dependabot[bot]]

Bumps org.sonarsource.scanner.maven:sonar-maven-plugin from 3.11.0.3922 to 4.0.0.4121.

Release notes

Sourced from org.sonarsource.scanner.maven:sonar-maven-plugin's releases.

4.0.0.4121

Release notes - Sonar Scanner for Maven - 4.0

Bug

SCANMAVEN-183 Maven HTTPS proxies not taken into account

SCANMAVEN-217 Broken integration with maven encrypted secret

SCANMAVEN-218 The scanner should index pom.xml instead of generated pom

Improvement

SCANMAVEN-210 Move to Java 11 and drop Java 8 support

SCANMAVEN-214 scanAll should be disabled when `sonar.tests` is overridden

SCANMAVEN-215 scanAll exludes external report files

SCANMAVEN-216 scanAll includes Java and Kotlin files if `sonar.java.binaries` and `sonar.java.libraries` are set

SCANMAVEN-219 Support HTTPS Proxy System Properties

SCANMAVEN-224 Log a warning message when the version of the scanner is not specified

Commits

• 5d0c548 SCANMAVEN-224 Log a warning message when the version of the scanner is not sp...
• b98e10c [NO-JIRA] Upgrade to parent pom 74.0.0.1.1768 (#227)
• 1b68124 SCANMAVEN-220 Revert "Make sonar.maven.scanAll true by default" (#226)
• f4ad3da [NO-JIRA] Remove unused import (#224)
• e3cc5ec SCANMAVEN-216 scanAll includes Java and Kotlin files if sonar.java.binaries...
• b772d4c SCANMAVEN-217 Fix broken integration with maven encrypted secret (#221)
• be505e3 SCANMAVEN-183 The scanner for Maven takes HTTPS proxies into account (#218)
• dd5762e SCANMAVEN-210: Move to Java 11 (#220)
• d2c79c1 SCANMAVEN-215 scanAll exludes external report files (#217)
• 990c59d SCANMAVEN-220: Enable sonar.scanner.scanAll by default (#219)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

[holgerhagen]

@dependabot rebase