feat(sonarcloud): qualitygate.wait=true — PR-Merge bei neuen Issues blockieren

paulefl · paulefl · commit dd25ea63e2a4 · 2026-03-20T12:04:22.000Z
diff --git a/.github/actions/sonarcloud/action.yml b/.github/actions/sonarcloud/action.yml
@@ -10,6 +10,13 @@ inputs:
     description: SonarCloud token (SONAR_TOKEN secret).
     required: true
 
+  qualitygate-wait:
+    description: >
+      Wait for Quality Gate result and fail if new issues are introduced.
+      Set to 'true' to block merges when new SonarQube issues are found.
+    required: false
+    default: 'true'
+
   # ── Coverage Artifacts ──────────────────────────────────────────────────
   go-reports-artifact:
     description: Artifact name for Go reports (empty = skip).
@@ -183,6 +190,9 @@ runs:
       id: sonar
       uses: SonarSource/sonarqube-scan-action@v6
       continue-on-error: true
+      with:
+        args: >
+          -Dsonar.qualitygate.wait=${{ inputs.qualitygate-wait }}
       env:
         GITHUB_TOKEN: ${{ env.GITHUB_TOKEN }}
         SONAR_TOKEN:  ${{ inputs.sonar-token }}
@@ -206,3 +216,4 @@ runs:
         else
           echo "✅ SonarCloud Scan erfolgreich"
         fi
+
