Add SonarQube scan to CI pipeline

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-18 22:21:07 +01:00
parent 90cb2be14c
commit 12344fe33d
2 changed files with 20 additions and 0 deletions
--- a/.gitea/workflows/ci.yml
+++ b/.gitea/workflows/ci.yml
@@ -88,6 +88,20 @@ jobs:
      - name: Security audit
        run: composer audit

+  sonarqube:
+    runs_on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: SonarQube Scan
+        uses: sonarsource/sonarqube-scan-action@v5
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_HOST_URL: https://sn.esy-web.dev
+
  build:
    runs_on: ubuntu-latest
    steps: