Bump pixee/upload-tool-results-action from 1 to 2

dependabot[bot] commented 4 months ago

Bumps pixee/upload-tool-results-action from 1 to 2.

Release notes

Sourced from pixee/upload-tool-results-action's releases.

v2.0.0

🔥 Breaking Change: SonarQube Host URL Configuration

Summary: We have updated the sonar-api-url input to sonar-host-url to be consistent with SonarQube tooling. This change addresses an inconsistency that caused issues for users, particularly with trailing slashes in the URL. We now use URL building modules to construct URLs, ensuring robustness and compatibility.

Details:

Input Name Change:

The input name has been changed from sonar-api-url to sonar-host-url to align with SonarQube's configuration expectations.

Handling Trailing Slashes:

Trailing slashes in the sonar-host-url are now tolerated. We have switched to using URL building modules instead of string operations to construct URLs, ensuring proper handling of trailing slashes and other edge cases.

Impact:

Users need to update their workflows to use sonar-host-url instead of sonar-api-url.

This change is considered a breaking change and requires users to update to the latest version of the action.

Example:
steps:
  - name: Run SonarCloud Analysis
    uses: pixee/upload-tool-results-action@v2
    with:
      sonar-host-url: ${{ vars.SONAR_HOST_URL }}
      # other inputs
What's Changed

📝 Document SonarQube Integration by @gilday in pixee/upload-tool-results-action#25

ISS-1378 Make pixee/upload-tool-results-action Sonar Host URL Consistent With Sonar Actions by @JesusCotlamee in pixee/upload-tool-results-action#26

Full Changelog: https://github.com/pixee/upload-tool-results-action/commits/v2.0.0

v1.1.3

What's Changed

🎨 Format with Prettier by @gilday in pixee/upload-tool-results-action#23

📝 Add Pixee API to README by @gilday in pixee/upload-tool-results-action#22

✨ Support Workflows Triggered By "Push" Event by @gilday in pixee/upload-tool-results-action#24

Full Changelog: https://github.com/pixee/upload-tool-results-action/compare/v1.1.2...v1.1.3

v1.1.2

What's Changed

📌 Pin Examples to Major Version by @gilday in pixee/upload-tool-results-action#21

Add support for Contrast results by @JesusCotlamee in pixee/upload-tool-results-action#19

Full Changelog: https://github.com/pixee/upload-tool-results-action/commits/v1.1.2

... (truncated)

Commits

7f27cfa Automatic compilation
5c7fcc8 🎨 Apply Formatting (#29)
1a3f44f 📝 Update Examples to Use v2 (#28)
0f0bdbf Add support for uploading Snyk SARIF (#27)
c0d4409 ISS-1378 Make pixee/upload-tool-results-action Sonar Host URL Consistent With...
157c02a 📝 Document SonarQube Integration (#25)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] commented 4 months ago

The following labels could not be found: github-actions, dependencies.

guibranco commented 4 months ago

@dependabot squash and merge

guibranco commented 4 months ago

@dependabot squash and merge

dependabot[bot] commented 4 months ago

This PR has already been merged! 🎉

dependabot[bot] commented 4 months ago

This PR has already been merged! 🎉

deepsource-io[bot] commented 4 months ago

Here's the code health analysis summary for commits 436dece..af22a09. View details on DeepSource ↗.

Analysis Summary

Analyzer	Status	Summary	Link
Test coverage	⚠️ Artifact not reported	Timed out: Artifact was never reported	View Check ↗
SQL	✅ Success		View Check ↗
Secrets	✅ Success		View Check ↗
PHP	✅ Success		View Check ↗
Docker	✅ Success		View Check ↗