Build

Bump the maven-build-plugins group with 2 updates #1083

	name: Build
	on:
	push:
	pull_request_target:
	types: [labeled]
	jobs:
	build:
	name: Build and Test
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
	with:
	fetch-depth: 0
	show-progress: false
	- uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0
	with:
	java-version: 25
	distribution: 'temurin'
	cache: 'maven'
	- name: Cache SonarCloud packages
	uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
	with:
	path: ~/.sonar/cache
	key: ${{ runner.os }}-sonar
	restore-keys: ${{ runner.os }}-sonar
	- name: Ensure to use tagged version
	if: startsWith(github.ref, 'refs/tags/')
	run: mvn -B versions:set --file ./pom.xml -DnewVersion=${GITHUB_REF##*/}
	- name: Build and Test
	run: >
	mvn -B verify
	jacoco:report
	org.sonarsource.scanner.maven:sonar-maven-plugin:sonar
	-Pcoverage
	-Dsonar.projectKey=cryptomator_cryptofs
	-Dsonar.organization=cryptomator
	-Dsonar.host.url=https://sonarcloud.io
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
	SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
	- uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
	with:
	name: artifacts
	path: target/*.jar
	- name: Create release
	if: startsWith(github.ref, 'refs/tags/')
	uses: softprops/action-gh-release@6da8fa9354ddfdc4aeace5fc48d7f679b5214090 # v2.4.1
	with:
	token: ${{ secrets.CRYPTOBOT_RELEASE_TOKEN }}
	generate_release_notes: true
	prerelease: true

Provide feedback