MCP-86 Migrate to GitHub Actions (#86)

* MCP-86 Migrate to GitHub Actions

Author: eray-felek-sonarsource

.cirrus.star

@@ -0,0 +1,47 @@
+name: Build
+
+on:
+  push:
+    branches:
+      - master
+      - branch-*
+      - dogfood-*
+  pull_request:
+  merge_group:
+  workflow_dispatch:
+
+# Workflow-level concurrency
+concurrency:
+  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
+  cancel-in-progress: ${{ github.ref_name != github.event.repository.default_branch }}
+
+# Required permissions for Vault OIDC and repo operations
+permissions:
+  id-token: write
+  contents: write
+
+jobs:
+  build:
+    runs-on: github-ubuntu-latest-s  # Public repository runner
+    name: Build
+    steps:
+      - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
+      - uses: jdx/mise-action@c37c93293d6b742fc901e1406b8f764f6fb19dac # v2.4.4
+        with:
+          version: 2025.7.12
+      - uses: SonarSource/ci-github-actions/build-gradle@v1
+        with:
+          deploy-pull-request: true
+          artifactory-reader-role: private-reader
+          artifactory-deployer-role: qa-deployer
+          sonar-platform: sqc-eu
+          gradle-args: ":cyclonedxBom jacocoTestReport"
+
+  promote:
+    needs: [build]
+    runs-on: github-ubuntu-latest-s  # Public repository runner
+    name: Promote
+    steps:
+      - uses: SonarSource/ci-github-actions/promote@v1
+        with:
+          promote-pull-request: true

.cirrus.yml

@@ -0,0 +1,13 @@
+name: Cleanup PR Resources
+
+on:
+  pull_request:
+    types: [ closed ]
+
+jobs:
+  cleanup:
+    runs-on: github-ubuntu-latest-s
+    permissions:
+      actions: write
+    steps:
+      - uses: SonarSource/ci-github-actions/pr_cleanup@v1

.github/workflows/build.yml

@@ -0,0 +1,34 @@
+name: Shadow scans
+on:
+  schedule:
+    # Run the workflow every day at 04:00 UTC
+    - cron: '0 4 * * *'
+  workflow_dispatch:
+
+jobs:
+  scan:
+    runs-on: github-ubuntu-latest-s
+    name: Scan on shadow platforms
+    permissions:
+      id-token: write
+      contents: write
+    steps:
+      - uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
+      - uses: jdx/mise-action@c37c93293d6b742fc901e1406b8f764f6fb19dac # v2.4.4
+        with:
+          version: 2025.7.12
+      - uses: SonarSource/ci-github-actions/build-gradle@master # dogfood
+        with:
+          run-shadow-scans: true
+          artifactory-reader-role: private-reader
+          artifactory-deployer-role: qa-deployer
+          gradle-args: ":jacocoTestReport"
+      - name: Run IRIS Analysis
+        uses: SonarSource/unified-dogfooding-actions/run-iris@v1
+        with:
+          primary_project_key: "SonarSource_sonarqube-mcp-server"
+          primary_platform: "SQC-EU"
+          shadow1_project_key: "SonarSource_sonarqube-mcp-server"
+          shadow1_platform: "Next"
+          shadow2_project_key: "SonarSource_sonarqube-mcp-server"
+          shadow2_platform: "SQC-US"

.github/workflows/pr-cleanup.yml

@@ -0,0 +1,21 @@
+name: Slack Notifications
+on:
+  check_suite:
+    types: [completed]
+
+permissions:
+  contents: read
+  id-token: write
+  checks: read
+jobs:
+  slack-notifications:
+    if: >-
+      contains(fromJSON('["main", "master"]'), github.event.check_suite.head_branch) || startsWith(github.event.check_suite.head_branch, 'dogfood-') || startsWith(github.event.check_suite.head_branch, 'branch-')
+    runs-on: github-ubuntu-latest-s
+    steps:
+      - name: Send Slack Notification
+        env:
+          GITHUB_TOKEN: ${{ github.token }}
+        uses: SonarSource/gh-action_slack-notify@master
+        with:
+          slackChannel: squad-ide-mcp-server

.github/workflows/shadow_scans.yml

@@ -1,6 +1,6 @@
 # SonarQube MCP Server
 
-[![Build Status](https://api.cirrus-ci.com/github/SonarSource/sonarqube-mcp-server.svg?branch=master)](https://cirrus-ci.com/github/SonarSource/sonarqube-mcp-server)
+[![Build](https://github.com/SonarSource/sonarqube-mcp-server/actions/workflows/build.yml/badge.svg?branch=master)](https://github.com/SonarSource/sonarqube-mcp-server/actions/workflows/build.yml)
 [![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=SonarSource_sonarqube-mcp-server&metric=alert_status&token=364a508a1e77096460f8571d8e66b41c99c95bea)](https://sonarcloud.io/summary/new_code?id=SonarSource_sonarqube-mcp-server)
 
 The SonarQube MCP Server is a Model Context Protocol (MCP) server that enables seamless integration with SonarQube Server or Cloud for code quality and security.

.github/workflows/slack_notify.yml

@@ -225,7 +225,7 @@ sonar {
 		property("sonar.organization", "sonarsource")
 		property("sonar.projectKey", "SonarSource_sonarqube-mcp-server")
 		property("sonar.projectName", "SonarQube MCP Server")
-		property("sonar.links.ci", "https://cirrus-ci.com/github/SonarSource/sonarqube-mcp-server")
+		property("sonar.links.ci", "https://github.com/SonarSource/sonarqube-mcp-server/actions")
 		property("sonar.links.scm", "https://github.com/SonarSource/sonarqube-mcp-server")
 		property("sonar.links.issue", "https://jira.sonarsource.com/browse/MCP")
 		property("sonar.exclusions", "**/build/**/*")

README.md

@@ -0,0 +1,3 @@
+[tools]
+java = "21.0"
+gradle = "8.13"