Bump the java-production-dependencies group with 5 updates #190

	name: Build
	on:
	[push]
	jobs:
	build:
	name: Build and Test
	runs-on: ubuntu-latest
	if: "!contains(github.event.head_commit.message, '[ci skip]') && !contains(github.event.head_commit.message, '[skip ci]')"
	steps:
	- uses: actions/checkout@v3
	with:
	fetch-depth: 0
	- uses: actions/setup-java@v3
	with:
	java-version: 11
	distribution: 'temurin'
	cache: 'maven'
	- name: Cache SonarCloud packages
	uses: actions/cache@v3
	with:
	path: ~/.sonar/cache
	key: ${{ runner.os }}-sonar
	restore-keys: ${{ runner.os }}-sonar
	- name: Ensure to use tagged version
	if: startsWith(github.ref, 'refs/tags/')
	run: mvn versions:set --file ./pom.xml -DnewVersion=${GITHUB_REF##*/}
	- name: Build and Test
	id: buildAndTest
	run: >
	mvn -B verify
	jacoco:report
	org.sonarsource.scanner.maven:sonar-maven-plugin:sonar
	-Pcoverage
	-Dsonar.projectKey=cryptomator_cryptolib
	-Dsonar.organization=cryptomator
	-Dsonar.host.url=https://sonarcloud.io
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
	SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
	- uses: actions/upload-artifact@v3
	with:
	name: artifacts
	path: target/*.jar
	- name: Create Release
	uses: actions/create-release@v1 # NOTE: action is unmaintained and repo archived
	if: startsWith(github.ref, 'refs/tags/')
	env:
	GITHUB_TOKEN: ${{ secrets.CRYPTOBOT_RELEASE_TOKEN }} # release as "cryptobot"
	with:
	tag_name: ${{ github.ref }}
	release_name: Release ${{ github.ref }}
	prerelease: true

Provide feedback