BUILD-10765 Important: Update SonarSource/gh-action_release to v6

[SonarTech]

Important: Update GitHub Actions to compliant versions.

• .github/workflows/release.yml: release d9afbb6f48da6012ebf64d8247d7b44995c7cace → v6

See: https://discuss.sonarsource.com/t/action-required-update-your-github-actions-cache-release-and-releasability-before-31-04-2026/23899

[hashicorp-vault-sonar-prod]

BUILD-10765

[sonar-review-alpha]

Summary

Updates the SonarSource/gh-action_release GitHub Actions workflow from a pinned commit SHA (v6.7.0) to the semantic version tag v6. This is a required compliance update with a deadline of April 31, 2026 per SonarSource guidance.

What reviewers should know

Single file change: Only .github/workflows/release.yml is modified — one line updates the action ref from a commit hash to a version tag.

What changed: Line 15 pins the release action to v6 instead of a specific commit (d9afbb6f48da6012ebf64d8247d7b44995c7cace). Using a semantic version tag means the workflow will automatically use the latest v6.x patch release.

Low risk: This is a workflow configuration change only — no application code is affected. The syntax and permissions remain unchanged. Verify that the v6 tag works as expected in CI and that the action's interface hasn't changed in a breaking way.

---

• Generate Walkthrough
• Generate Diagram

🗣️ Give feedback

[sonar-review-alpha]

LGTM! ✅

Minimal, clean change — no issues found.

🗣️ Give feedback

[sonarqube-next]

Quality Gate passed for 'RSPEC Maven Plugin'

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
0 Dependency risks
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarQube