Add SonarQube scan to CI pipeline

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

.gitea/workflows/ci.yml

@@ -88,6 +88,20 @@ jobs:
       - name: Security audit
         run: composer audit
 
+  sonarqube:
+    runs_on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: SonarQube Scan
+        uses: sonarsource/sonarqube-scan-action@v5
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_HOST_URL: https://sn.esy-web.dev
+
   build:
     runs_on: ubuntu-latest
     steps:

sonar-project.properties

@@ -0,0 +1,6 @@
+sonar.projectKey=e-ticket
+sonar.projectName=E-Ticket
+sonar.sources=src,assets,templates
+sonar.exclusions=vendor/**,node_modules/**,public/build/**,var/**,migrations/**
+sonar.php.version=8.4
+sonar.sourceEncoding=UTF-8