Hi community, Here I propose the introduction of sonar as a CI detection tool.
SonarCloud is a cloud-based code analysis service designed to detect coding issues in 30+ languages, frameworks and IaC platforms. By integrating directly with our CI pipeline, our code is checked against an extensive set of rules that cover many attributes of code, such as maintainability, reliability, and security issues on each merge/pull request. As a core element of Sonar solution, SonarCloud completes the analysis loop to help you deliver clean code that meets high-quality standards. And it is also widely used in other apache projects. What do you guys think? -- Best Wishes ZiHao
