ci(deps): bump JetBrains/qodana-action from 2025.1.1 to 2026.1.3

[dependabot]

Bumps JetBrains/qodana-action from 2025.1.1 to 2026.1.3.

Release notes

Sourced from JetBrains/qodana-action's releases.

v2026.1.3

Changelog

• b0eaa86 ⬆️ Bump Kotlin to 2.3.0
• c91a70c ✨ Add Maven plugin for Qodana
• ca746a1 🐛 QD-14658 Fix Maven integration test with reliable Python issue detection
• 1ca399e 🧱 Update vsts/QodanaScan/index.js
• 6975b5c ✅ QD-14666 Update GitHub Action tests to use new CLI arguments (#597)
• ab64602 ⬆️ Update qodana to v2026.1.1 (#595)
• ac6b2a1 🐛 QD-14655 fix cache copy error and update the component
• f44cbf3 🐛 QD-14679 Append native cache key as prefix, not suffix
• cfac2b9 :feature: QD-14680 Switch auto-push of dist changes to local pre-commit check
• c3af492 🐛 QD-15013 Fix azure-dev-release workflow failure due to missing husky (#602)
• 4861e01 ⬆️ Update qodana to v2026.1.3 (#603)

v2026.1.0

Changelog

• 91e26dc ✨ Add support for retrieving and using the latest nightly release tags
• 203eab0 ✨ QD-13829 remove auto-addition of --within-docker for qodana docker executions
• 93546d8 ✨ QD-13829 distinguish native/docker caches
• 3492039 ✨ QD-14035 bump node version to 24
• d22cd6b ✨ QD-14035 prioritize real merge-base computation to avoid stale pr.base.sha issue
• e1b97b3 🐛 QD-13829 fix incorrect check for QODANA_DOCKER environment variable
• 7cc2d8d ⬆️ Update Node.js version to 24.14.1 and add .npmrc with min-release-age=7d
• d436fca ⬆️ Bump the dependencies group across 1 directory with 2 updates
• 2268e0f ✨ QD-14278 allow to specify which nightly to use
• 498e15f ⬆️ Bump the dependencies group across 1 directory with 14 updates #590
• d7b5ec2 ⬆️ Update qodana to the v2026.1.0 (#592)

v2025.3.2

Changelog

• 412e8b0 ⬆️ Bump qs from 6.14.0 to 6.14.1 in /gitlab
• 58285fd ⬆️ Bump actions/upload-artifact in the dependencies group
• c500323 ⬆️ Bump tar from 7.5.2 to 7.5.3
• 63097d0 ⬆️ Bump tar from 7.5.3 to 7.5.4
• d2cddc4 ⬆️ Bump lodash from 4.17.21 to 4.17.23
• 747a46a ⬆️ Bump tar from 7.5.2 to 7.5.4 in /gitlab (#554)
• 58fe1b8 ✨ QD-5339 Switch to space-separated arguments
• 8c13992 🧱 QD-5339 Use space-separated arguments in the tests
• ba6fa71 ⬆️ Bump tar from 7.5.4 to 7.5.7
• c0354b2 ⬆️ Bump tar from 7.5.4 to 7.5.7 in /gitlab
• ffcb814 🐛 QD-13302 QD-12803 Fix problems with Gitlab migration + enable quick-fixes for https git url + add debugging
• a4fd82e ⬆️ Bump the dependencies group across 1 directory with 15 updates (#572)
• 0a50b18 ⬆️ Bump @​types/node from 24.9.2 to 25.1.0 (#561)
• 4795977 ⬆️ Bump axios from 1.12.0 to 1.13.5 in /gitlab (#566)
• 04790b1 ⬆️ Update qodana to v2025.3.2 (#579)
• 89eb435 🐛 QD-13302 QD-12803 change push url approach and general improvements (#581)

v2025.3.1

Changelog

• 3b96197 ⬆️ Update qodana to v2025.3.1

... (truncated)

Commits

• 4861e01 ⬆️ Update qodana to v2026.1.3 (#603)
• c3af492 🐛 QD-15013 Fix azure-dev-release workflow failure due to missing husky (#...
• cfac2b9 :feature: QD-14680 Switch auto-push of dist changes to local pre-commit check
• f44cbf3 🐛 QD-14679 Append native cache key as prefix, not suffix
• ac6b2a1 🐛 QD-14655 fix cache copy error and update the component
• ab64602 ⬆️ Update qodana to v2026.1.1 (#595)
• 6975b5c ✅ QD-14666 Update GitHub Action tests to use new CLI argumen...
• 1ca399e 🧱 Update vsts/QodanaScan/index.js
• ca746a1 🐛 QD-14658 Fix Maven integration test with reliable Python issue detection
• c91a70c ✨ Add Maven plugin for Qodana
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Qodana Community for JVM

It seems all right 👌

No new problems were found according to the checks applied

💡 Qodana analysis was run in the pull request mode: only the changed files were checked

View the detailed Qodana report

To be able to view the detailed Qodana report, you can either:

• Register at Qodana Cloud and configure the action
• Use GitHub Code Scanning with Qodana
• Host Qodana report at GitHub Pages
• Inspect and use qodana.sarif.json (see the Qodana SARIF format for details)

To get *.log files or any other Qodana artifacts, run the action with upload-result option set to true,
so that the action will upload the files as the job artifacts:

      - name: 'Qodana Scan'
        uses: JetBrains/qodana-action@v2026.1.3
        with:
          upload-result: true

Contact Qodana team

Contact us at qodana-support@jetbrains.com

• Or via our issue tracker: https://jb.gg/qodana-issue
• Or share your feedback: https://jb.gg/qodana-discussions