SONARJAVA-5722 Unify Platform Dogfooding of external linter rules

[alban-auzeill]

SONARJAVA-5722

[sonarqube-next]

Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
0 Dependency risks
No data about Coverage
No data about Duplication

See analysis details on SonarQube

[github-advanced-security]

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

[sonarqube-cloud-us]

🤖 Pull Request summary

Adds automated shadow scanning and issue replication to CI pipeline.

• New CI task sonar_shadow_scan_and_issue_replication_task with matrix builds for SonarCloud and SonarQube US
• Shell script implementing SonarQube analysis on shadow instances and IRIS tool execution for issue replication
• Configured with vault tokens and environment variables for different SonarQube instances

Review focus: Verify vault token paths are correct and consider security implications of the authentication setup. The commented-out cron trigger condition should be addressed.

💬 Please send your feedback

Quality Gate failed

Failed conditions
430 New issues
2 Security Hotspots

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE

[sonarqubecloud]

Quality Gate failed

Failed conditions
449 New issues
2 Security Hotspots

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE