Bump SonarSource/sonarcloud-github-action from 2.1.1 to 2.2.0

[dependabot[bot]]

Bumps SonarSource/sonarcloud-github-action from 2.1.1 to 2.2.0.

Release notes

Sourced from SonarSource/sonarcloud-github-action's releases.

v2.2.0

What's Changed

• docs: update checkout GitHub Action to the latest version by @​froblesmartin in SonarSource/sonarcloud-github-action#61
• SC-12363 Improve the SonarCloud Intro in README.md by @​claire-villard-sonarsource in SonarSource/sonarcloud-github-action#65
• Makes sonarsource/analysis-experience-squad the code owner by @​alexandre-odoux-sonarsource in SonarSource/sonarcloud-github-action#66
• SCSCANGHA-3 Update the condition to detect "build.gradle.kts" files by @​leveretka in SonarSource/sonarcloud-github-action#71
• SCSCANGHA-6 Add Github Actions tests by @​antoine-vinot-sonarsource in SonarSource/sonarcloud-github-action#72
• SCSCANGHA-6 Fix main branch name in GitHub workflow by @​antoine-vinot-sonarsource in SonarSource/sonarcloud-github-action#73
• SCSCANGHA-9 Enable Mend scan by @​antoine-vinot-sonarsource in SonarSource/sonarcloud-github-action#75
• Enable debug logging when GitHub Actions debug logging is enabled by @​ari-becker in SonarSource/sonarcloud-github-action#43
• SCSCANGHA-15 Add test for scanner debug logging by @​istvan-bodo-sonarsource in SonarSource/sonarcloud-github-action#77
• SCSCANGHA-13 Warning instead of failure for Maven/Gradle projects by @​antoine-vinot-sonarsource in SonarSource/sonarcloud-github-action#76
• SCSCANGHA-5 Update the base image by @​antoine-vinot-sonarsource in SonarSource/sonarcloud-github-action#78
• SCSCANGHA-16 Support passing args with spaces by @​istvan-bodo-sonarsource in SonarSource/sonarcloud-github-action#79
• Use a placeholder for the action version in README by @​antoine-vinot-sonarsource in SonarSource/sonarcloud-github-action#80
• Drop GH token from README by @​bogdanakushnir in SonarSource/sonarcloud-github-action#46

Commits

• 4006f66 SC-6818 drop GH token from README
• 9c11606 Use a placeholder for the action version in README
• d08d592 SCSCANGHA-16 Support passing args with spaces (#79)
• a69a8ed SCSCANGHA-5 Update the base image
• f1d5a2a SCSCANGHA-13 Warning instead of failure for Maven/Gradle projects
• 714bd35 SCSCANGHA-15 Add test for scanner debug logging (#77)
• 1373cf7 SCSCANGHA-14 Enable debug logging when GitHub Actions debug logging is enable...
• 49689c4 SCSCANGHA-9 Enable Mend scan
• 3da91d8 SCSCANGHA-6 Fix main branch name in GitHub workflow
• 0861f01 SCSCANGHA-6 Add Github Actions tests
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

:mag: Vulnerabilities of sommerfeldio/source2adoc:58c51d083fd26b4a207275bd13509e6fe38826c3

:package: Image Reference sommerfeldio/source2adoc:58c51d083fd26b4a207275bd13509e6fe38826c3

digest	sha256:bcf213a81215ae221d8402df3f590d09d164d696ef6125a1ad51e6a0c9b22135
vulnerabilities
size	6.6 MB
packages	22

:package: Base Image alpine:3

also known as	3.19 3.19.1 latest
digest	sha256:6457d53fb065d6f250e1504b9bc42d5b6c65941d57532c072d929dd0628977d0
vulnerabilities

ssl_client 1.36.1-r15 (apk) pkg:apk/alpine/ssl_client@1.36.1-r15?arch=x86_64&upstream=busybox&distro=alpine-3.19.1 ```dockerfile # Dockerfile (39:39) FROM alpine:3.19.1 AS run ``` Affected range <1.36.1-r16 Fixed version 1.36.1-r16 EPSS Score 0.04% EPSS Percentile 12th percentile Description Affected range <1.36.1-r17 Fixed version 1.36.1-r17 EPSS Score 0.04% EPSS Percentile 12th percentile Description Affected range <1.36.1-r17 Fixed version 1.36.1-r17 EPSS Score 0.04% EPSS Percentile 12th percentile Description Affected range <1.36.1-r17 Fixed version 1.36.1-r17 EPSS Score 0.04% EPSS Percentile 12th percentile Description

libssl3 3.1.4-r5 (apk) pkg:apk/alpine/libssl3@3.1.4-r5?arch=x86_64&upstream=openssl&distro=alpine-3.19.1 ```dockerfile # Dockerfile (39:39) FROM alpine:3.19.1 AS run ``` Affected range <3.1.5-r0 Fixed version 3.1.5-r0 EPSS Score 0.04% EPSS Percentile 15th percentile Description Affected range <3.1.4-r6 Fixed version 3.1.4-r6 EPSS Score 0.04% EPSS Percentile 10th percentile Description

[github-actions[bot]]

Overview

Image reference	sommerfeldio/source2adoc:rc	sommerfeldio/source2adoc:58c51d083fd26b4a207275bd13509e6fe38826c3
- digest	bd86e46d4ca3	bcf213a81215
- provenance	https://github.com/sommerfeld-io/source2adoc/commit/60f8119d2dbbf797d61fea8496d579844f9ee414	https://github.com/sommerfeld-io/source2adoc/commit/58c51d083fd26b4a207275bd13509e6fe38826c3
- vulnerabilities
- platform	linux/amd64	linux/amd64
- size	6.6 MB	6.6 MB (+6 B)
- packages	27	22 (-5)
Base Image	alpine:3 also known as: • 3.19 • 3.19.1 • latest	alpine:3.19.1 also known as: • 3 • 3.19 • latest
- vulnerabilities

Labels (3 changes)

> * `±` 3 changed > * _9 unchanged_ ```diff maintainer=sebastian@sommerfeld.io org.opencontainers.image.authors=source2adoc open source project -org.opencontainers.image.created=2024-05-23T14:45:30.832Z +org.opencontainers.image.created=2024-05-27T19:16:01.540Z org.opencontainers.image.description=Streamline the process of generating AsciiDoc documentation from inline comments within source code files. This tool converts inline documentation into AsciiDoc files, tailored for seamless integration with Antora. org.opencontainers.image.documentation=https://source2adoc.sommerfeld.io org.opencontainers.image.licenses=NOASSERTION -org.opencontainers.image.revision=60f8119d2dbbf797d61fea8496d579844f9ee414 +org.opencontainers.image.revision=58c51d083fd26b4a207275bd13509e6fe38826c3 org.opencontainers.image.source=https://github.com/sommerfeld-io/source2adoc org.opencontainers.image.title=source2adoc org.opencontainers.image.url=https://github.com/sommerfeld-io/source2adoc org.opencontainers.image.vendor=source2adoc open source project -org.opencontainers.image.version=main +org.opencontainers.image.version=pr-65 ```

Packages and Vulnerabilities (5 package changes and 0 vulnerability changes)

> * :heavy_minus_sign: 4 packages removed > * :infinity: 1 packages changed > * 21 packages unchanged

Changes for packages of type apk (4 changes)

	Package	Version sommerfeldio/source2adoc:rc	Version sommerfeldio/source2adoc:58c51d083fd26b4a207275bd13509e6fe38826c3
:heavy_minus_sign:	ca-certificates	20230506-r0
:heavy_minus_sign:	libc-dev	0.7.2-r5
:heavy_minus_sign:	openssl	3.1.4-r5
		Removed vulnerabilities (2):
:heavy_minus_sign:	pax-utils	1.3.7-r2

Changes for packages of type golang (1 changes)

	Package	Version sommerfeldio/source2adoc:rc	Version sommerfeldio/source2adoc:58c51d083fd26b4a207275bd13509e6fe38826c3
:infinity:	stdlib	go1.22.3	1.22.3