ci: disable sonar on dependabot branches in main workflow file

Author: boolivar

.github/workflows/ci.yml

@@ -2,11 +2,12 @@ name: CI
 on:
   push:
     branches-ignore:
-    - dependabot/**
     - gh-pages
 permissions:
   contents: write
   pull-requests: write
+env:
+  IS_DEPENDABOT: ${{ startsWith(github.ref_name, 'dependabot/') && 'yes' || '' }}
 jobs:
   build:
     runs-on: ubuntu-latest
@@ -22,17 +23,17 @@ jobs:
     - name: Setup Gradle
       uses: gradle/actions/setup-gradle@v4
     - name: Cache SonarCloud packages
+      if: ${{ !env.IS_DEPENDABOT }}
       uses: actions/cache@v4
       with:
         path: ~/.sonar/cache
         key: ${{ runner.os }}-sonar
         restore-keys: ${{ runner.os }}-sonar
     - name: Run Gradle checks
       env:
-        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
-      run: ./gradlew check sonar --continue
-    - name: Upload test reports
+      run: ./gradlew ${{ env.IS_DEPENDABOT && 'check' || 'check sonar' }} --continue --stacktrace
+    - name: Upload reports
       if: ${{ !cancelled() }}
       uses: actions/upload-artifact@v4
       with: