Update analyzer dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
org.sonarsource.sonarqube:sonar-ws (source)	8.5.1.38104 → 8.9.10.61524
org.sonarsource.slang:sonar-scala-plugin (source)	1.8.3.2219 → 1.22.0.2217
com.sonarsource.dotnet:sonar-csharp-enterprise-plugin (source)	10.20.0.135146 → 10.21.0.135717
org.sonarsource.dotnet:sonar-csharp-plugin (source)	10.20.0.135146 → 10.21.0.135717
com.sonarsource.cpp:sonar-cfamily-plugin	6.78.0.96395 → 6.79.0.97291
org.sonarsource.iac:sonar-iac-plugin (source)	2.6.1.19203 → 2.7.0.19672
org.sonarsource.html:sonar-html-plugin (source)	3.22.0.7011 → 3.25.0.7473
org.sonarsource.java:sonar-java-symbolic-execution-plugin (source)	8.16.3.1589 → 8.19.0.1586
org.sonarsource.sonarlint.omnisharp:omnisharp-roslyn	1.39.10 → 1.39.12

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

SonarSource/sonarqube (org.sonarsource.sonarqube:sonar-ws)

v8.9.10.61524

Compare Source

You'll find more in the community announcement, and details in the release notes.

v8.9.9.56886

Compare Source

v8.9.8.54436

Compare Source

v8.9.7.52159

Compare Source

v8.9.6.50800

Compare Source

v8.9.5.50698

Compare Source

v8.9.4.50575

Compare Source

v8.9.3.48735

Compare Source

v8.9.2.46101

Compare Source

v8.9.1.44547

Compare Source

v8.9.0.43852

Compare Source

v8.8.0.42792

Compare Source

v8.7.1.42226: 8.7.1

Compare Source

v8.7.0.41497: 8.7.0

Compare Source

v8.6.1.40680: 8.6.1

Compare Source

v8.6.0.39681: 8.6.0

Compare Source

SonarSource/sonar-scala (org.sonarsource.slang:sonar-scala-plugin)

v1.22.0.2217

Compare Source

Release notes - sonar-scala - 1.22

Maintenance

SONARSCALA-106 Prepare next development iteration for 1.22
SONARSCALA-109 Add its subproject to analysis
SONARSCALA-111 Add automated release workflow
SONARSCALA-113 Update dependencies
SONARSCALA-117 Create workflow "Update Rule Metadata"
SONARSCALA-119 Update rule metadata
SONARSCALA-120 Fix bump-version to always include patch number.
SONARSCALA-121 Use #squad-jvm-releases for notifications about releases
SONARSCALA-122 Licence packaging standard - Scala
SONARSCALA-123 Scala - Upgrade gradle wrapper to 9.3.1
SONARSCALA-124 Update automated release

v1.21.0.1997

Compare Source

Release notes - sonar-scala - 1.21

False Positive

SONARSCALA-35 S1192 should not raise on annotation values

Bug

SONARSCALA-97 Fix release config of sonar-scala to properly push releases

SONARSCALA-100 Fix broken coverage in CI

SONARSCALA-105 Fix artifacts to publish

Task

SONARSCALA-79 Update License Header

SONARSCALA-96 Prepare the release version for 1.20.1

SONARSCALA-98 Use config-gradle instead of build-gradle in the QA pipeline

SONARSCALA-99 Build with Java 21

SONARSCALA-101 update license headers 2026

SONARSCALA-103 Fix quality gate for 1.21 release

SONARSCALA-104 Update rule metadata for release 1.21

False Negative

SONARSCALA-14 No issue raised for if without else when the result value is used

v1.20.1.1884

Compare Source

Release notes - sonar-scala - 1.20.1

Rotations of binary signing keys

v1.20.0.1864

Compare Source

Release notes - sonar-scala - 1.20

Task

SONARSCALA-19 Update Scala Parser to 4.14.1 or greater

SONARSCALA-20 Update test dependencies for integration tests

SONARSCALA-59 Update RSPEC before 1.20 release

SONARSCALA-60 Prepare next development iteration 1.20

SONARSCALA-65 Migrate Gradle wrapper to 7.6.5

SONARSCALA-80 Review and fix dependency risks

SONARSCALA-81 Upgrade analyzer-commons to the latest

SONARSCALA-82 Upgrade Plugin-API to version 12.0.0.2960

SONARSCALA-83 Update dependency risk exclusions

SONARSCALA-84 Upgrade Gradle wrapper to version 8.14.3

SONARSCALA-88 Stop using @​deprecated onQualifiers to fix QG

SONARSCALA-89 Update Slang version

v1.19.1.1880

Compare Source

Release notes - sonar-scala - 1.19.1

Rotations of binary signing keys

v1.19.0.484

Compare Source

Release notes - sonar-scala - 1.19

Bug

SONARSCALA-58 Unchanged files are not skipped in incremental analysis

Task

SONARSCALA-29 Update RSPEC before 1.19 release

SONARSCALA-34 Prepare next development iteration 1.19

SONARSCALA-39 Inject Gradle secrets closer to usage

SONARSCALA-40 Remove queries to non-persisted metrics

SONARSCALA-41 Update headers for 2025

SONARSCALA-43 Update CODEOWNERS after reorg

SONARSCALA-57 Bump orchestrator to version 5.5 or greater

v1.18.2.1879

Compare Source

Release notes - sonar-scala - 1.18.2

Rotations of binary signing keys

v1.18.1.389

Compare Source

Release notes - sonar-scala - 1.18.1

Task

SONARSCALA-47 Prepare next development iteration

Improvement

SONARSCALA-45 Fix discrepancies between MQR and severity for Scala rules

v1.18.0.266

Compare Source

Release notes - sonar-scala - 1.18

Task

SONARSCALA-28 Support Multi-Quality Rule (MQR) mode

SONARSCALA-30 Update rule metadata

SONARSCALA-32 Upgrade slang to version 1.17.0.6351

SONARSCALA-33 Update scapegoat rules mapping

Improvement

SONARSCALA-27 Update to SONAR Source-Available License v1.0 (SSALv1)

v1.17.1.166

Compare Source

Release notes - sonar-scala - 1.17.1

Bug

SONARSCALA-21 Copy Paste Detection crashes analysis when applying cached tokens on files that are out of sync

v1.17.0.146

Release notes - sonar-scala - 1.17

Bug

SONARSCALA-8 Code duplication of Scala code is not detected in PR analysis

Task

SONARSCALA-2 Fix sonar-scala's cirrus-ci pipeline

SONARSCALA-18 Update Dependencies

SonarSource/sonar-dotnet (org.sonarsource.dotnet:sonar-csharp-plugin)

v10.21.0.135717: 10.21

Compare Source

Bug

• NET-3376 - Fix S6930 AD0001: Issue on template / code files for blazor
• NET-3367 - Fix S4830 AD0001: CertificateValidationCheck Syntax node is not within syntax tree

Feature

• NET-3260 - Fix broken links in S6960 RSPEC

False Positive

• NET-2886 - Fix T0015 FP: In constructor
• NET-1678 - Fix S4275 FP: with property overload

SonarSource/sonar-html (org.sonarsource.html:sonar-html-plugin)

v3.25.0.7473

Release notes - SonarHTML - 3.25

What's Changed

• SONARHTML-169 Fix UnclosedTagCheck false positives in Twig templates by @​zglicz in #​589
• SONARHTML-361 Restore release.yml with workflow_dispatch only by @​zglicz in #​592
• SONARHTML-169 Fix PHP directive closing on end token inside single-quoted strings by @​zglicz in #​591
• fix(deps): update sonar.plugin.api.version to v13.5.0.4319 by @​renovate[bot] in #​593
• chore(deps): update dependency org.mockito:mockito-core to v5.22.0 by @​renovate[bot] in #​594
• SONARHTML-251 fix(S1082): Recognize Vue @​keydown/@​keyup and Angular (keyup.enter) as valid keyboard handlers by @​zglicz in #​595
• fix(deps): update dependency org.sonarsource.sonarlint.core:sonarlint-core-test-utils to v10.46.0.84435 by @​renovate[bot] in #​599
• chore(deps): update dependency org.sonarsource.sonarlint.core:sonarlint-rpc-protocol to v10.46.0.84435 by @​renovate[bot] in #​598
• chore(deps): update dependency org.sonarsource.sonarlint.core:sonarlint-core to v10.46.0.84435 by @​renovate[bot] in #​597
• chore(deps): update jdx/mise-action action to v3.6.2 by @​renovate[bot] in #​596
• chore(deps): update sonarqube.api.impl.version to v26.3.0.120487 by @​renovate[bot] in #​601
• chore(deps): update dependency org.sonarsource.sonarqube:sonar-ws to v26.3.0.120487 by @​renovate[bot] in #​600
• chore(deps): update dependency org.apache.maven.plugins:maven-resources-plugin to v3.5.0 by @​renovate[bot] in #​603
• chore(deps): update jdx/mise-action action to v3.6.3 by @​renovate[bot] in #​604
• Prepare next development iteration by @​github-actions[bot] in #​602
• chore(deps): update dependency org.mockito:mockito-core to v5.23.0 by @​renovate[bot] in #​606
• Add RequiredAttributeTemplateCheck as a new template rule by @​zglicz in #​605
• chore(deps): update jdx/mise-action action to v4 by @​renovate[bot] in #​608
• fix(deps): update maven dependencies to v10.47.0.84936 by @​renovate[bot] in #​607

Full Changelog: SonarSource/sonar-html@3.24.0.7341...3.25.0.7473

v3.24.0.7341

Compare Source

Release notes - SonarHTML - 3.24

Improvement

SONARHTML-173 FP S1090: consider hidden or tabindex property not to report
SONARHTML-177 FP in S5148: Add new exceptions for relative URLs
SONARHTML-179 Fix S1827: body deprecated margin attributes
SONARHTML-180 Include .htm extension
SONARHTML-185 Fix S1096: Allow "title" without corresponding "head"
SONARHTML-187 Fix S1929: Ignore Server Side Includes
SONARHTML-219 Fix S6825 FP: Should not trigger on hidden input elements
SONARHTML-252 FP: S6819 - The ARIA “img” role should be allowed on SVG images
SONARHTML-253 Fix S6840: Do not report for Vuetify text fields
SONARHTML-256 Web:S6821 role “toolbar” should not be raised as invalid role
SONARHTML-284 tag triggers UnclosedTagCheck even though it is allowed to have no end tag
SONARHTML-288 Angular [attr.aria-checked] doesn't prevent S6807 to trigger
SONARHTML-298 Fix FP S5255: Triggers in Vue file using mutually exclusive v-if and v-else clauses

Task

SONARHTML-344 Update RSPEC before 3.24.0 release
SONARHTML-345 fix(S6853): Recognize Razor HTML helpers as form controls in labels
SONARHTML-348 fix(S7930): Reduce FPs for duplicate IDs in conditional blocks
SONARHTML-349 fix(S7930): Skip duplicate check for dynamic template IDs
SONARHTML-350 fix(S7930): Handle same-quote nesting in Razor/template attributes
SONARHTML-351 fix(S6853): Recognize Angular and Vue binding syntax for label 'for' attribute
SONARHTML-352 fix(S5254): Recognize ERB/JSP expressions as dynamic lang values
SONARHTML-353 fix(S5254): Recognize ERB/JSP expressions as dynamic lang values
SONARHTML-354 fix(UnsupportedTagsInHtml5Check): Skip PascalCase Vue components
SONARHTML-355 fix(S6853): Move trailing comments to their own lines

v3.23.0.7209

Compare Source

Release notes - SonarHTML - 3.23

Task

SONARHTML-342 feat: Add support to links to S5725

SonarSource/sonar-java-symbolic-execution (org.sonarsource.java:sonar-java-symbolic-execution-plugin)

v8.19.0.1586

Compare Source

Release notes - JavaSE - 8.19

Bug

JAVASE-145 Change project key for sonar-java-symbolic-execution on SQC EU and US to be consistent with Next

Task

JAVASE-13 Prepare next development iteration

JAVASE-153 Update parent pom 85.0.0.3035 and license headers

JAVASE-158 Update parent pom to version 86.0.0.3040

JAVASE-159 Update release and releasability workflows

v8.18.1.347

Compare Source

Release notes - JavaSE - 8.18.1

Task

JAVASE-15 Prepare next development iteration

JAVASE-16 Upgrade commons-lang3 to 3.18.0

v8.18.0.242

Compare Source

Release notes - JavaSE - 8.18

Task

JAVASE-10 Prepare next development iteration

JAVASE-12 Update rule metadata

Improvement

JAVASE-11 Remove DivisionByZeroCheck registration from the plugin

v8.17.0.181

Compare Source

Release notes - JavaSE - 8.17

Task

JAVASE-9 Update rule metadata

Improvement

JAVASE-7 Remove NullDereferenceCheck from plugin

---

Configuration

📅 Schedule: Branch creation - "after 7am every weekday,before 7pm every weekday" in timezone CET, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Never, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠️ Artifact update problem

Renovate failed to update artifacts related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: gradle.properties

Command failed: ./gradlew -Dorg.gradle.jvmargs=-Xms512m -Xmx512m --console=plain --dependency-verification lenient -q --write-verification-metadata sha256 dependencies

FAILURE: Build completed with 2 failures.

1: Task failed with an exception.
-----------
* Where:
Settings file '/tmp/renovate/repos/github/SonarSource/sonarlint-intellij/settings.gradle.kts' line: 13

* What went wrong:
Cannot get property 'artifactoryUrl' on extra properties extension as it does not exist

* Try:
> Run with --stacktrace option to get the stack trace.
> Run with --info or --debug option to get more log output.
> Get more help at https://help.gradle.org.
==============================================================================

2: Task failed with an exception.
-----------
* What went wrong:
There was a failure while populating the build operation queue: The root project is not yet available for build.
> The root project is not yet available for build.

* Try:
> Run with --stacktrace option to get the stack trace.
> Run with --info or --debug option to get more log output.
> Get more help at https://help.gradle.org.
==============================================================================

BUILD FAILED in 1m 33s

File name: gradle/libs.versions.toml

Command failed: ./gradlew -Dorg.gradle.jvmargs=-Xms512m -Xmx512m --console=plain --dependency-verification lenient -q --write-verification-metadata sha256 dependencies

FAILURE: Build completed with 2 failures.

1: Task failed with an exception.
-----------
* Where:
Settings file '/tmp/renovate/repos/github/SonarSource/sonarlint-intellij/settings.gradle.kts' line: 13

* What went wrong:
Cannot get property 'artifactoryUrl' on extra properties extension as it does not exist

* Try:
> Run with --stacktrace option to get the stack trace.
> Run with --info or --debug option to get more log output.
> Get more help at https://help.gradle.org.
==============================================================================

2: Task failed with an exception.
-----------
* What went wrong:
There was a failure while populating the build operation queue: The root project is not yet available for build.
> The root project is not yet available for build.

* Try:
> Run with --stacktrace option to get the stack trace.
> Run with --info or --debug option to get more log output.
> Get more help at https://help.gradle.org.
==============================================================================

BUILD FAILED in 11s

File name: gradle/libs.versions.toml

Post-upgrade command './gradlew --write-verification-metadata sha256 help' has not been added to the allowed list in allowedCommands

File name: gradle/libs.versions.toml

Post-upgrade command './gradlew --write-verification-metadata sha256 help' has not been added to the allowed list in allowedCommands

File name: gradle/libs.versions.toml

Post-upgrade command './gradlew --write-verification-metadata sha256 help' has not been added to the allowed list in allowedCommands

File name: gradle/libs.versions.toml

Post-upgrade command './gradlew --write-verification-metadata sha256 help' has not been added to the allowed list in allowedCommands

File name: gradle/libs.versions.toml

Post-upgrade command './gradlew --write-verification-metadata sha256 help' has not been added to the allowed list in allowedCommands

File name: gradle/libs.versions.toml

Post-upgrade command './gradlew --write-verification-metadata sha256 help' has not been added to the allowed list in allowedCommands

File name: gradle/libs.versions.toml

Post-upgrade command './gradlew --write-verification-metadata sha256 help' has not been added to the allowed list in allowedCommands

File name: gradle/libs.versions.toml

Post-upgrade command './gradlew --write-verification-metadata sha256 help' has not been added to the allowed list in allowedCommands

File name: gradle.properties

Post-upgrade command './gradlew --write-verification-metadata sha256 help' has not been added to the allowed list in allowedCommands

[hashicorp-vault-sonar-prod]

Renovate Jira issue ID: SLI-2564