From b85e62bec4c6d82570c7de27299c4efe28bda44b Mon Sep 17 00:00:00 2001
From: Favee <mac@MacBook-Pro.local>
Date: Fri, 11 Apr 2025 10:12:50 +0100
Subject: [PATCH] added project key and org key to sonar.yml

---
 .github/workflows/security.yml | 3 +++
 .github/workflows/sonar.yml    | 2 +-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index b084e022f..a793fb2be 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -85,6 +85,9 @@ jobs:
         docker_name: 'ghcr.io/zaproxy/zaproxy:stable'
         rules_file_name: '.zap/rules.tsv'
         cmd_options: '-a'
+        allow_issue_writing: false
+        fail_action: false
+        docker_options: '-u zap'
     
     - name: Archive ZAP results
       uses: actions/upload-artifact@v4
diff --git a/.github/workflows/sonar.yml b/.github/workflows/sonar.yml
index 519c8393e..c6fd21e10 100644
--- a/.github/workflows/sonar.yml
+++ b/.github/workflows/sonar.yml
@@ -35,4 +35,4 @@ jobs:
       env:
         GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
-      run: ./mvnw -B verify org.sonarsource.scanner.maven:sonar-maven-plugin:sonar -Dsonar.projectKey=FaveeDD_spring-petclinic -Dsonar.organization=faveedd
+      run: ./mvnw -B verify org.sonarsource.scanner.maven:sonar-maven-plugin:sonar -Dsonar.projectKey=FaveeDD_spring-petclinic -Dsonar.organization=faveedd -Dsonar.automationStatus=standalone