diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index d490a138..d6fc438f 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -1,26 +1,18 @@
 version: 2
+# Dependabot version updates are explicitly disabled for all known package
+# ecosystems. Ecosystems not listed here are not monitored by Dependabot at all.
+# To enable updates for an ecosystem, remove its open-pull-requests-limit or set
+# it to a value greater than 0.
+# Note: Dependabot security updates are configured separately and remain enabled.
 updates:
-- package-ecosystem: npm
-  directory: "/"
-  schedule:
-    interval: daily
-    time: "04:00"
-  pull-request-branch-name:
-    separator: "-"
-  open-pull-requests-limit: 10
-  ignore:
-  - dependency-name: filesize
-    versions:
-    - 6.2.6
-    - 6.3.0
-  - dependency-name: adm-zip
-    versions:
-    - 0.5.3
-- package-ecosystem: github-actions
-  directory: "/"
-  schedule:
-    interval: daily
-    time: "04:00"
-  pull-request-branch-name:
-    separator: "-"
-  open-pull-requests-limit: 10
+  - package-ecosystem: npm
+    directory: "/"
+    schedule:
+      interval: weekly
+    open-pull-requests-limit: 0
+
+  - package-ecosystem: github-actions
+    directory: "/"
+    schedule:
+      interval: weekly
+    open-pull-requests-limit: 0
diff --git a/.github/workflows/SonarQube.yml b/.github/workflows/SonarQube.yml
new file mode 100644
index 00000000..50dd3d39
--- /dev/null
+++ b/.github/workflows/SonarQube.yml
@@ -0,0 +1,27 @@
+name: SonarQube
+on: 
+  push:
+    branches:
+      - master
+  workflow_dispatch:
+
+jobs:
+  build:
+    name: SonarQube
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+        with:
+          fetch-depth: 0
+
+      - uses: SonarSource/sonarqube-scan-action@v7
+        env:
+          GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
+
+      - name: SonarQube Quality Gate check
+        uses: sonarsource/sonarqube-quality-gate-action@v1
+        timeout-minutes: 5
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
diff --git a/sonar-project.properties b/sonar-project.properties
new file mode 100644
index 00000000..13963749
--- /dev/null
+++ b/sonar-project.properties
@@ -0,0 +1 @@
+sonar.projectKey=com.shell.action-download-artifact