CAPAUT-438 Add sonarqube workflow

.gitea/workflows/publish-sonarqube.yaml

@@ -0,0 +1,28 @@
+#
+# 
+# Scans the sourcecode with sonarqube
+# 
+# Project: workflows
+# Author: Marc Böhm <marc.boehm@captica.de>
+# License: MIT License (see LICENSE.md)
+# 
+# Copyright (c) captica GmbH est. 2021
+#
+name: Quality scan with sonarqube workflow
+on:
+  workflow_call:
+jobs:
+  quality_sonar:
+    name: Verify quality with sonarqube code scan
+    runs-on: docker-ubuntu
+    steps:
+      - name: Checkout source code
+        uses: actions/checkout@v4
+        with:
+          token: ${{ secrets.GIT_ACCESS_TOKEN }}
+          submodules: 'true'
+      - name: SonarQube Quality Scan
+        uses: sonarsource/sonarqube-scan-action@v3.0.0 # https://github.com/marketplace/actions/official-sonarqube-scan
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_HOST_URL: ${{ vars.SONAR_HOST_URL }}