diff --git a/.github/workflows/qa.yml b/.github/workflows/qa.yml
index 2b903ba..f606eb6 100644
--- a/.github/workflows/qa.yml
+++ b/.github/workflows/qa.yml
@@ -1,6 +1,6 @@
 name: QA
 
-on: push
+on: [push, pull_request]
 
 jobs:
   run_qa:
diff --git a/.github/workflows/update-tags.yml b/.github/workflows/update-tags.yml
new file mode 100644
index 0000000..39f1b55
--- /dev/null
+++ b/.github/workflows/update-tags.yml
@@ -0,0 +1,32 @@
+name: Update Tags
+
+on:
+  push:
+    tags:
+      - v*.*.*
+
+jobs:
+  generate:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+
+      - name: Parse semver
+        uses: madhead/semver-utils@v2
+        id: version
+        with:
+          version: ${{ github.ref_name }}
+
+      - name: Update tags
+        run: |
+          TAGS='v${{ steps.version.outputs.major }} v${{ steps.version.outputs.major }}.${{ steps.version.outputs.minor }}'
+          
+          for t in $TAGS; do
+            git tag -f "$t"
+            git push origin ":$t" 2>/dev/null || true
+            git push origin "$t"
+          done
diff --git a/Dockerfile b/Dockerfile
index c422aac..7662d6d 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -79,5 +79,6 @@ RUN apk add --no-cache \
 COPY entrypoint.sh /entrypoint.sh
 RUN dos2unix /entrypoint.sh
 RUN chmod +x /entrypoint.sh
-
+COPY cleanup.sh /cleanup.sh
+RUN chmod +x /cleanup.sh
 ENTRYPOINT ["/entrypoint.sh"]
diff --git a/action.yml b/action.yml
index 1d0e4ed..b2baff6 100644
--- a/action.yml
+++ b/action.yml
@@ -7,6 +7,8 @@ branding:
 runs:
   using: docker
   image: Dockerfile
+  entrypoint: "/entrypoint.sh"
+  post-entrypoint: "/cleanup.sh"
 inputs:
   args:
     description: Additional arguments to the sonar-scanner
diff --git a/cleanup.sh b/cleanup.sh
new file mode 100755
index 0000000..e499d4a
--- /dev/null
+++ b/cleanup.sh
@@ -0,0 +1,8 @@
+#!/bin/bash
+
+set -e
+
+_tmp_file=$(ls "${INPUT_PROJECTBASEDIR}/" | head -1)
+PERM=$(stat -c "%u:%g" "${INPUT_PROJECTBASEDIR}/$_tmp_file")
+
+chown -R $PERM "${INPUT_PROJECTBASEDIR}/"
\ No newline at end of file
diff --git a/entrypoint.sh b/entrypoint.sh
index f0725c1..0a6a76a 100755
--- a/entrypoint.sh
+++ b/entrypoint.sh
@@ -33,7 +33,3 @@ fi
 
 sonar-scanner -Dsonar.projectBaseDir=${INPUT_PROJECTBASEDIR} ${INPUT_ARGS}
 
-_tmp_file=$(ls "${INPUT_PROJECTBASEDIR}/" | head -1)
-PERM=$(stat -c "%u:%g" "${INPUT_PROJECTBASEDIR}/$_tmp_file")
-
-chown -R $PERM "${INPUT_PROJECTBASEDIR}/"
diff --git a/test/run-qa.sh b/test/run-qa.sh
index e822da5..397d3ba 100755
--- a/test/run-qa.sh
+++ b/test/run-qa.sh
@@ -91,6 +91,7 @@ success "Correctly failed fast."
 info "Analyze project..."
 cd test/example-project/
 docker run -v `pwd`:/github/workspace/ --workdir /github/workspace --network $network --env INPUT_PROJECTBASEDIR=/github/workspace --env SONAR_TOKEN=$token --env SONAR_HOST_URL='http://sonarqube:9000' sonarsource/sonarqube-scan-action
+docker run -v `pwd`:/github/workspace/ --workdir /github/workspace --network $network --env INPUT_PROJECTBASEDIR=/github/workspace --entrypoint /cleanup.sh sonarsource/sonarqube-scan-action
 if [[ ! $? -eq 0 ]]; then
   error "Couldn't run the analysis."
   exit 1