From 2f77a1ec69fb1d595b06f35ab27e97605bdef703 Mon Sep 17 00:00:00 2001
From: Aleksandra Bozhinoska <aleksandra.bozhinoska@sonarsource.com>
Date: Wed, 24 Sep 2025 17:48:09 +0200
Subject: [PATCH] SQSCANGHA-121 Add vulnerability warning

---
 action.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/action.yml b/action.yml
index 1784c4c..a044ad3 100644
--- a/action.yml
+++ b/action.yml
@@ -31,6 +31,9 @@ runs:
       env:
         INPUT_PROJECTBASEDIR: ${{ inputs.projectBaseDir }}
         INPUT_SCANNERVERSION: ${{ inputs.scannerVersion }}
+    - name: Vulnerability warning
+      shell: bash
+      run: echo "::warning title=Vulnerability warning::This version of the SonarQube Scanner GitHub Action is no longer supported and contains a security vulnerability. Please update your workflow to use sonarsource/sonarqube-scan-action@v6 for the latest security patches and features. For more information visit https://community.sonarsource.com/gha-v6-update"
     - name: Load Sonar Scanner CLI from cache
       id: sonar-scanner-cli
       uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 #v4.2.4