5 fixes, according to SonarQube

Co-authored-by: Annie Nguyen Ly <[email protected]>

Author: adam-purcell

.github/workflows/ci-cd-pipeline.yml

@@ -1,49 +1,50 @@
 on:
-  # Elements that trigger the workflow
   push:
     branches:
-      - '*' # Runs on all branches
+      - "*" # Runs on all branches
   pull_request:
     branches:
-      - '*' # Runs on all branches
+      - "*" # Runs on all branches
 
 jobs:
-  # Define a job "build"
   build:
     runs-on: ubuntu-latest
 
-
     steps:
-      # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
       - name: Checkout code
         uses: actions/checkout@v2
+        with:
+          fetch-depth: 0 # Required for SonarQube analysis
 
-      # set up express server
       - name: Set up Node.js
         uses: actions/setup-node@v2
         with:
-          node-version: '18'
+          node-version: "18"
 
-      # Inject environment variables (MongoDB Atlas & Firebase connections)
       - name: Create .env file
         run: |
           echo "DB_CONN_STRING=${{ secrets.DB_CONN_STRING }}" >> chathaven/.env
           echo "DB_NAME=chatHavenDB" >> chathaven/.env
           echo "PORT=3000" >> chathaven/.env
           echo "FIREBASE_API_KEY=${{ secrets.FIREBASE_API_KEY }}" >> chathaven/.env
-          echo "GEMINI_API_KEY=${{ secrets.GEMINI_API_KEY }}" >> chathaven/.env  # Add this line
+          echo "GEMINI_API_KEY=${{ secrets.GEMINI_API_KEY }}" >> chathaven/.env
 
-      # Install backend dependencies
       - name: Install backend dependencies
         working-directory: ./chathaven/backend
         run: npm ci
 
-      # Install frontend dependencies
       - name: Install frontend dependencies
         working-directory: ./chathaven/frontend
         run: npm ci
 
-      # # Run backend tests
       - name: Run Jest Unit Tests
         working-directory: ./chathaven/backend
         run: npm test
+
+      - name: SonarQube Scan
+        uses: SonarSource/sonarqube-scan-action@v5
+        with:
+          projectBaseDir: ./chathaven/backend
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}

.gitignore

@@ -42,3 +42,7 @@ node_modules
 
 # Environment variables
 /chathaven/.env
+
+# SonarQube
+chathaven/sonar-project.properties
+/chathaven/backend/.scannerwork