Update dependency org.jenkins-ci.plugins.workflow:workflow-job to v1295 [SECURITY] - autoclosed #450

	name: SonarCloud Code Analysis
	on:
	push:
	branches:
	- master
	pull_request:
	types: [opened, synchronize, reopened]
	jobs:
	build:
	name: Code analysis...
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v3
	with:
	fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis
	- name: Set up JDK 11
	uses: actions/setup-java@v3
	with:
	java-version: 11
	- name: Build with Maven security checking...
	run: mvn -q clean install -Psecurity-scans -Denv.DEVOPS_FRAMEWORK_UNITTESTS=true -DskipTests=true
	- name: Cache SonarCloud packages...
	uses: actions/cache@v3
	with:
	path: ~/.sonar/cache
	key: ${{ runner.os }}-sonar
	restore-keys: ${{ runner.os }}-sonar
	- name: Cache Maven packages...
	uses: actions/cache@v3
	with:
	path: ~/.m2
	key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }}
	restore-keys: ${{ runner.os }}-m2
	- name: Build and analyze...
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
	SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
	run: \|
	mvn -q -B verify -Denv.DEVOPS_FRAMEWORK_UNITTESTS=true -DskipTests=true \
	org.sonarsource.scanner.maven:sonar-maven-plugin:sonar \
	-Dsonar.host.url=https://sonarcloud.io \
	-Dsonar.login=$SONAR_TOKEN \
	-Dsonar.projectKey=org.devops.framework:devops-framework \
	-Dsonar.organization=tpayne

Provide feedback