build: bump io.sentry:sentry from 8.19.1 to 8.22.0 #840

	name: SonarCloud

	on:
	push:
	branches: [ main ]
	pull_request:
	types: [ opened, synchronize, reopened ]

	jobs:
	sonarcloud:
	runs-on: ubuntu-latest

	steps:
	# Load secrets from 1Password
	- name: Load secrets from 1Password
	uses: 1password/load-secrets-action@v3
	if: ${{ env.OP_SERVICE_ACCOUNT_TOKEN != null }}
	with:
	export-env: true
	env:
	OP_SERVICE_ACCOUNT_TOKEN: ${{ secrets.OP_SERVICE_ACCOUNT_TOKEN }}
	SONAR_TOKEN: op://ddev-intellij-plugin-secrets/Sonar Token/credential

	# Check out current repository
	- name: Fetch Sources
	uses: actions/checkout@v5
	if: ${{ env.SONAR_TOKEN != null }}
	with:
	fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis

	# Validate wrapper
	- name: Gradle Wrapper Validation
	if: ${{ env.SONAR_TOKEN != null }}
	uses: gradle/actions/wrapper-validation@v4

	# Set up Java environment for the next steps
	- name: Setup Java
	if: ${{ env.SONAR_TOKEN != null }}
	uses: actions/setup-java@v5
	with:
	distribution: zulu
	java-version: 21

	# SonarCloud Cache
	- name: 'Cache: SonarCloud'
	if: ${{ env.SONAR_TOKEN != null }}
	uses: actions/cache@v4
	with:
	path: ~/.sonar/cache
	key: ${{ runner.os }}-sonar

	- name: Setup Gradle
	if: ${{ env.SONAR_TOKEN != null }}
	uses: gradle/actions/setup-gradle@v4
	with:
	cache-read-only: ${{ github.ref != 'refs/heads/main' }}

	- name: Run sonarqube
	if: ${{ env.SONAR_TOKEN != null }}
	run: ./gradlew -Dtest.ignoreFailures=true sonarqube --info --stacktrace
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

Provide feedback