From 456fd96b671dae74f204c38922be5749fb3db20d Mon Sep 17 00:00:00 2001
From: Ryan Cooley <ryan.cooley@processmaker.com>
Date: Fri, 7 Jul 2023 20:41:18 -0700
Subject: [PATCH 1/2] Add SonarQube workflow

---
 .github/workflows/sonarqube.yml | 29 +++++++++++++++++++++++++++++
 sonar-project.properties        |  1 +
 2 files changed, 30 insertions(+)
 create mode 100644 .github/workflows/sonarqube.yml
 create mode 100644 sonar-project.properties

diff --git a/.github/workflows/sonarqube.yml b/.github/workflows/sonarqube.yml
new file mode 100644
index 0000000000..ce8fb784e8
--- /dev/null
+++ b/.github/workflows/sonarqube.yml
@@ -0,0 +1,29 @@
+name: SonarQube
+
+on:
+  push:
+    branches:
+      - develop
+  pull_request:
+    types: [opened, synchronize, reopened]
+
+jobs:
+  build:
+    name: Build
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v2
+        with:
+          fetch-depth: 0  # Shallow clones should be disabled for a better relevancy of analysis
+      - uses: sonarsource/sonarqube-scan-action@master
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
+      # If you wish to fail your job when the Quality Gate is red, uncomment the
+      # following lines. This would typically be used to fail a deployment.
+      # We do not recommend to use this in a pull request. Prefer using pull request
+      # decoration instead.
+      # - uses: sonarsource/sonarqube-quality-gate-action@master
+      #   timeout-minutes: 5
+      #   env:
+      #     SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
\ No newline at end of file
diff --git a/sonar-project.properties b/sonar-project.properties
new file mode 100644
index 0000000000..8ed5f4a74e
--- /dev/null
+++ b/sonar-project.properties
@@ -0,0 +1 @@
+sonar.projectKey=ProcessMaker_processmaker_AYkzkfKexYvY_isvKt07
\ No newline at end of file

From 0401f478b5fe6bca60b79c9e371aaeaa1981bfc7 Mon Sep 17 00:00:00 2001
From: Ryan Cooley <ryan.cooley@processmaker.com>
Date: Fri, 7 Jul 2023 20:48:16 -0700
Subject: [PATCH 2/2] Clarify job name

---
 .github/workflows/sonarqube.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/sonarqube.yml b/.github/workflows/sonarqube.yml
index ce8fb784e8..d2cde4c12f 100644
--- a/.github/workflows/sonarqube.yml
+++ b/.github/workflows/sonarqube.yml
@@ -9,7 +9,7 @@ on:
 
 jobs:
   build:
-    name: Build
+    name: Scan
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v2