chore: add sonar qube scan to project #1

	name: SAST com SonarCloud

	on:
	push:
	branches: [main]
	pull_request:

	jobs:
	sonarcloud:
	runs-on: ubuntu-latest
	steps:
	- name: Checkout code
	uses: actions/checkout@v3

	- name: Setup Node.js
	uses: actions/setup-node@v3
	with:
	node-version: "16"

	- name: Cache dependencies
	uses: actions/cache@v3
	with:
	path: ~/.npm
	key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }}

	- name: Install dependencies
	run: npm install

	- name: Run SonarCloud Scan
	uses: SonarSource/sonarcloud-github-action@master
	with:
	organization: ${{ secrets.SONAR_ORG }}
	projectKey: ${{ secrets.SONAR_PROJECT }}
	token: ${{ secrets.SONAR_TOKEN }}

Provide feedback