CI: Add Nexus IQ scan to rip-app/ad

Issue: IT-28096
Change-Id: Ic1c77e1f4b57306481702ce0f43d033828740d0b
Signed-off-by: Anil Belur <abelur@linuxfoundation.org>

diff --git a/.github/workflows/gerrit-novote-merge.yaml b/.github/workflows/gerrit-novote-merge.yaml
index 1e289f5..f625bc6 100644 (file)
--- a/.github/workflows/gerrit-novote-merge.yaml
+++ b/.github/workflows/gerrit-novote-merge.yaml
@@ -93,9 +93,17 @@ jobs:
             -Dsonar.sources=ad
             -Dsonar.verbose=true
 
+  call-sonartype-lifecycle:
+    name: "Sonatype Lifecycle Scan"
+    needs: notify
+    # yamllint disable-line rule:line-length
+    uses: lfit/releng-reusable-workflows/.github/workflows/reuse-sonatype-lifecycle.yaml@ac846b1cfeaf3a7cac6f28413a5206afc9951464 # v0.2.11
+    secrets:
+      NEXUS_IQ_PASSWORD: ${{ secrets.NEXUS_IQ_PASSWORD }}
+
   report-status:
     if: ${{ always() }}
-    needs: [notify, call-sonarcloud-scan]
+    needs: [notify, call-sonarcloud-scan, call-sonartype-lifecycle]
     runs-on: ubuntu-latest
     steps:
       - name: Get workflow conclusion