CI crash if pull request coming from Dependabot because of Sonarcloud token

[swerky]

Dependabot pull request will trigger the CI but won't be able to generate the report for Sonarcloud because he doesn't have access to the SONAR_TOKEN anymore.

The quick fix is to add a condition on the step if the pull request comes from Dependabot.

if: ${{ github.actor != 'dependabot[bot]' }}

Starting March 1st, 2021 workflow runs that are triggered by Dependabot […] will be treated as if they were opened from a repository fork.

Sources:

• https://community.sonarsource.com/t/youre-not-authorized-to-run-analysis-and-github-bots/41994/4
• https://github.blog/changelog/2021-02-19-github-actions-workflows-triggered-by-dependabot-prs-will-run-with-read-only-permissions/