feat: sonar in maven

Author: g-otn

.github/workflows/maven-bump-push-dockerhub.yml

@@ -24,6 +24,7 @@ jobs:
         uses: actions/checkout@v3
         with:
           token: ${{ secrets.BUMP_PAT }}
+          fetch-depth: 0 # For Sonar blame information
 
       - name: Set up Java
         uses: actions/setup-java@v3
@@ -41,8 +42,17 @@ jobs:
         with:
           commit-message: "[skip ci] Bump version to"
 
-      - name: Package with Maven
-        run: mvn package -B -P prod "-Dmaven.test.skip" "-Dstyle.color=always"
+      - name: Verify with Maven
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+        run: |
+          REPO_NAME=$(echo "${{ github.repository }}" | cut -d '/' -f 2)
+
+          mvn verify -B -P prod,coverage "-Dstyle.color=always" \
+            org.sonarsource.scanner.maven:sonar-maven-plugin:sonar \
+            -Dsonar.host.url="https://sonarcloud.io" \
+            -Dsonar.organization=soat-tech-challenge \
+            -Dsonar.projectKey=soat-tech-challenge_$REPO_NAME
 
       - name: Login to Docker Hub
         uses: docker/login-action@v3