Add sonar analysis

Jenkinsfile

@@ -0,0 +1,32 @@
+pipeline {
+    agent { 
+        label 'zuvmljenson02'
+    }
+    environment {
+        BUILD_IMAGE = "registry.lksnext.com/devsecops/maven-java-17:2.0"
+        SONAR_TOKEN = credentials('sonar-analysis-token')
+    }
+    stages {
+        stage('Sonar') {
+            when {
+                environment name: 'JOB_ACTION', value: 'sonar'
+            }
+            steps {
+                script {
+                    sh '''
+                        docker run --rm \
+                            -v ./:/app \
+                            -v "/home/jenkins/.m2":"/home/jenkins/.m2" \
+                            -e MAVEN_CMD="clean verify sonar:sonar -Dsonar.host.url=$SONAR_LKS_HOST_URL -Dsonar.token=$SONAR_TOKEN" \
+                            $BUILD_IMAGE
+                    '''
+                }
+            }
+        }
+    }
+    post {
+        always {
+            deleteDir()
+        }
+    }
+}

pom.xml

@@ -38,6 +38,7 @@
     <nohttp-checkstyle.version>0.0.11</nohttp-checkstyle.version>
     <spring-format.version>0.0.43</spring-format.version>
     
+    <sonar.projectKey>spring-petclinic</sonar.projectKey>
   </properties>
 
   <dependencies>
@@ -287,6 +288,12 @@
         <artifactId>cyclonedx-maven-plugin</artifactId>
       </plugin>
 
+      <plugin>
+        <groupId>org.sonarsource.scanner.maven</groupId>
+        <artifactId>sonar-maven-plugin</artifactId>
+        <version>3.9.1.2184</version>
+      </plugin>
+
     </plugins>
   </build>
   <licenses>