BUILD-10765 Important: Update SonarSource/gh-action_release to v6

[SonarTech]

Important: Update GitHub Actions to compliant versions.

• .github/workflows/release.yml: release c52861bb0e5dd564187f3fd74e048f20aef0f761 → v6

See: https://discuss.sonarsource.com/t/action-required-update-your-github-actions-cache-release-and-releasability-before-31-04-2026/23899

[hashicorp-vault-sonar-prod]

BUILD-10765

[sonar-review-alpha]

Summary

This PR updates the SonarSource gh-action_release action from a pinned commit (c52861bb0e5dd564187f3fd74e048f20aef0f761, tagged as v6.5.0) to the semantic version tag v6 in the release workflow.

Why: This is a compliance requirement from SonarSource with a deadline of April 31, 2026 (see discussion). Pinned commits must be updated to semantic version tags.

Impact: The workflow will now use the latest v6.x release of the action instead of a fixed patch version. This is a forward-looking change that may include bug fixes and improvements within the v6 series.

What reviewers should know

What to review:

• Single-line change in .github/workflows/release.yml
• Confirm v6 is a stable tag and compatible with the project's release process

Context for reviewers:

• This is a required compliance update, not an optional upgrade
• Moving from pinned commit to semantic versioning follows GitHub Actions best practices
• The change is minimal and low-risk; the workflow structure and all with: parameters remain unchanged
• If the v6 tag ever introduces breaking changes, the project will need to update to the next major version (v7, etc.)

---

• Generate Walkthrough
• Generate Diagram

🗣️ Give feedback

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues
0 New dependency risks

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[sonar-review-alpha]

LGTM! ✅

Clean, minimal compliance update — no issues found.

🗣️ Give feedback