Add sonarqube scan to test workflow

.github/workflows/test.yaml

@@ -0,0 +1,34 @@
+name: Test
+on: [push]
+
+jobs:
+  sonarqube:
+    name: SonarQube scan
+    runs-on: ubuntu-latest
+    needs: test
+    environment: production
+    if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/dev'
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis
+
+      # # Download the coverage report artifact - there are no test report to download
+      # - name: 'Download coverage and execution report'
+      #   uses: actions/download-artifact@v4
+      #   with:
+      #     pattern: '*-report'
+
+      # Perform the SonarQube scan
+      - uses: sonarsource/sonarqube-scan-action@master
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
+
+      # Optional: Fail the job if Quality Gate is red
+      # If you wish to fail your job when the Quality Gate is red, uncomment the
+      # following lines. This would typically be used to fail a deployment.
+      # - uses: sonarsource/sonarqube-quality-gate-action@master
+      #   timeout-minutes: 5
+      #   env:
+      #     SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

sonar-project.properties

@@ -0,0 +1,4 @@
+sonar.projectKey=populationgenomics_analysis-runner
+sonar.python.version=3.11
+sonar.python.coverage.reportPaths=coverage.xml
+sonar.python.xunit.reportPath=test-execution.xml