Patrick de Ruiter 1262a96f93

Add Checkov compliance scanning to CI pipeline ...

- Added Checkov security scan job that runs before SonarQube
- Configured for Terraform-specific IaC compliance checks
- Outputs results in CLI and SARIF formats
- Uploads scan results as artifacts for review
- SonarQube job now depends on Checkov passing
- Renamed workflow to reflect both quality and security scanning

2025-11-01 22:36:25 +01:00

..

sonarqube.yaml

Add Checkov compliance scanning to CI pipeline

2025-11-01 22:36:25 +01:00