While installing the Eclipse plugin 7.2.1, I am prompted to trust a certificate from “Sonarsource”. I was a bit curious, so I exported the certificate and inspected it. It expired on 2021-10-16. Perhaps this is why Eclipse prompts me to trust it?
Thank you for raising the question. Reason of this behavior is one of our dependencies that we sign for our plugin distribution. We have a ticket for this and you can track progress here.