Skip to content

.readthedocs.yml: Upgrade build's OS (3.3)#3113

Open
adriendupuis wants to merge 1 commit into3.3from
update-readthedocs-3.3
Open

.readthedocs.yml: Upgrade build's OS (3.3)#3113
adriendupuis wants to merge 1 commit into3.3from
update-readthedocs-3.3

Conversation

@adriendupuis
Copy link
Copy Markdown
Contributor

@adriendupuis adriendupuis commented Mar 30, 2026
edited
Loading

Question Answer
JIRA Ticket N/A
Versions 5.0, 4.6, 3.3, 2.5
Edition N/A

See #3111 for description and related PRs

@adriendupuis adriendupuis mentioned this pull request Mar 30, 2026
Open
@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud bot commented Mar 30, 2026

Quality Gate Failed Quality Gate failed

Failed conditions
14 Security Hotspots
17.2% Duplication on New Code (required ≤ 3%)
E Security Rating on New Code (required ≥ A)
D Reliability Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE

github-advanced-security[bot]
github-advanced-security bot found potential problems Mar 30, 2026
View reviewed changes
.github/workflows/preview_comment.yaml
- name: Create comment for changed files
run: |
file_limit=100
build_url="https://ez-systems-developer-documentation--${{ github.event.pull_request.number }}.com.readthedocs.build/${{inputs.project}}en/${{ github.event.pull_request.number }}/"

Check failure

Code scanning / SonarCloud

GitHub Actions should not be vulnerable to script injections High

inputs.project is vulnerable to script injection: values of inputs are provided by whoever triggers the workflow. Change this workflow to not use user-controlled data directly in a run block, for example by assigning this expression to an environment variable. See more on SonarQube Cloud
code_samples/api/rest_api/create_image.json.php

// User credentials
$username = 'admin';
$password = 'publish';

Check failure

Code scanning / SonarCloud

Credentials should not be hard-coded High

Detected 'password' in this variable name, review this potentially hardcoded credential. See more on SonarQube Cloud
code_samples/api/rest_api/create_image.xml.php

// User credentials
$username = 'admin';
$password = 'publish';

Check failure

Code scanning / SonarCloud

Credentials should not be hard-coded High

Detected 'password' in this variable name, review this potentially hardcoded credential. See more on SonarQube Cloud
@adriendupuis adriendupuis changed the base branch from 5.0 to 3.3 March 30, 2026 14:48
@adriendupuis adriendupuis marked this pull request as ready for review March 30, 2026 15:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mnocon mnocon mnocon approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@adriendupuis @mnocon @github-advanced-security