Bump guibranco/github-infisical-secrets-check-action from 1.1.20 to 1…

….1.21 (#147)

* Bump guibranco/github-infisical-secrets-check-action

Bumps [guibranco/github-infisical-secrets-check-action](https://github.com/guibranco/github-infisical-secrets-check-action) from 1.1.20 to 1.1.21.
- [Release notes](https://github.com/guibranco/github-infisical-secrets-check-action/releases)
- [Commits](guibranco/github-infisical-secrets-check-action@v1.1.20...v1.1.21)

---
updated-dependencies:
- dependency-name: guibranco/github-infisical-secrets-check-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

* Create sonar-cloud.yml

* Update .deepsource.toml

* Update sonar-cloud.yml

* Update sonar-cloud.yml

* Update sonar-cloud.yml

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: gstraccini[bot] <150967461+gstraccini[bot]@users.noreply.github.com>
Co-authored-by: Guilherme Branco Stracini <[email protected]>

.deepsource.toml

@@ -1,8 +1,5 @@
 version = 1
 
-[[analyzers]]
-name = "shell"
-
 [[analyzers]]
 name = "test-coverage"
 
@@ -13,4 +10,4 @@ name = "secrets"
 name = "docker"
 
 [[analyzers]]
-name = "csharp"
+name = "csharp"

.github/workflows/infisical-secrets-check.yml

@@ -23,4 +23,4 @@ jobs:
           fetch-depth: 0
 
       - name: Infisical secrets check
-        uses: guibranco/[email protected].20
+        uses: guibranco/[email protected].21

.github/workflows/sonar-cloud.yml

@@ -0,0 +1,66 @@
+name: SonarCloud Analysis
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+    types: [opened, synchronize, reopened]
+
+jobs:
+  SonarCloudAnalysis:
+    name: SonarCloud Analysis
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Set up Java
+        uses: actions/setup-java@v4
+        with:
+          distribution: 'temurin'
+          java-version: 21
+
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Setup .NET
+        uses: actions/setup-dotnet@v4
+        with:
+          dotnet-version: '9.0.x'          
+
+      - name: Cache SonarCloud packages
+        uses: actions/cache@v4
+        with:
+          path: ~/.sonar/cache
+          key: ${{ runner.os }}-sonar
+          restore-keys: ${{ runner.os }}-sonar
+
+      - name: Cache SonarCloud scanner
+        id: cache-sonar-scanner
+        uses: actions/cache@v4
+        with:
+          path: ~/.sonar/cache
+          key: ${{ runner.os }}-sonar-scanner
+          restore-keys: ${{ runner.os }}-sonar-scanner
+
+      - name: Install SonarCloud scanner
+        if: steps.cache-sonar-scanner.outputs.cache-hit != 'true'
+        run: dotnet tool update dotnet-sonarscanner --tool-path ~/.sonar/cache/
+
+      - name: Set SonarCloud variables
+        shell: bash
+        run: |
+          KEY="${{ github.repository_owner }}_${{ github.event.repository.name }}"
+          ORG="${{ github.repository_owner }}"
+          echo "KEY=${KEY}" >> "${GITHUB_ENV}"  # Keep the variable KEY as it
+          echo "ORG=${ORG@L}" >> "${GITHUB_ENV}" # Lowercase the ORG variable
+      
+      - name: Build and analyze
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+        run: |
+          ~/.sonar/cache/dotnet-sonarscanner begin /k:"${{ env.KEY }}" /o:"${{ env.ORG }}" /d:sonar.token="${{ secrets.SONAR_TOKEN }}" /d:sonar.host.url="https://sonarcloud.io" /d:sonar.scanner.scanAll=false /d:sonar.cs.opencover.reportsPaths="Tests/**/coverage.net8.0.opencover.xml"
+          dotnet build -c Release --verbosity minimal
+          dotnet test -c Release --verbosity minimal --no-build --no-restore /p:CollectCoverage=true /p:CoverletOutputFormat="opencover"
+          ~/.sonar/cache/dotnet-sonarscanner end /d:sonar.token="${{ secrets.SONAR_TOKEN }}"