diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 000000000..be6183512
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,20 @@
+# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
+
+version: 2
+updates:
+  - package-ecosystem: "maven"
+    directory: "/server/api-service"
+    schedule:
+      interval: "weekly"
+  - package-ecosystem: "npm"
+    directory: "/server/node-service"
+    schedule:
+      interval: "weekly"
+  - package-ecosystem: "npm"
+    directory: "/client"
+    schedule:
+      interval: "weekly"
+  - package-ecosystem: "docker"
+    directory: "/deploy/docker"
+    schedule:
+      interval: "weekly"
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 707e627fc..e43fb36af 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -13,10 +13,10 @@ name: "CodeQL"
 
 on:
   push:
-    branches: [ "develop" ]
+    branches: [ "main" ]
   pull_request:
     # The branches below must be a subset of the branches above
-    branches: [ "develop" ]
+    branches: [ "main" ]
   schedule:
     - cron: '20 15 * * 5'
 
diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml
new file mode 100644
index 000000000..3973e1382
--- /dev/null
+++ b/.github/workflows/sonarcloud.yml
@@ -0,0 +1,27 @@
+name: Build
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+    types: [opened, synchronize, reopened]
+jobs:
+  sonarcloud:
+    name: SonarCloud
+    runs-on: ubuntu-latest
+    steps:
+      - name: Setup Java JDK
+        uses: actions/setup-java@v1
+        with:
+          java-version: 17
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0  # Shallow clones should be disabled for a better relevancy of analysis
+      - name: Build Java
+        run: |
+          mvn clean compile -DskipTests -f ./server/api-service/pom.xml
+      - name: SonarCloud Scan
+        uses: SonarSource/sonarcloud-github-action@master
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}  # Needed to get PR information, if any
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
\ No newline at end of file
diff --git a/client/netlify.toml b/client/netlify.toml
new file mode 100644
index 000000000..1cb2010f3
--- /dev/null
+++ b/client/netlify.toml
@@ -0,0 +1,4 @@
+[[redirects]]
+  from = "/*"
+  to = "/"
+  status = 200
diff --git a/sonar-project.properties b/sonar-project.properties
new file mode 100644
index 000000000..2c7d2855c
--- /dev/null
+++ b/sonar-project.properties
@@ -0,0 +1,3 @@
+sonar.projectKey=Lowcoder-Community_openblocks
+sonar.organization=lowcoder-community
+sonar.java.binaries=server/api-service/openblocks-domain/target,server/api-service/openblocks-infra/target,server/api-service/openblocks-sdk/target,server/api-service/openblocks-server/target,server/api-service/openblocks-plugins/clickHousePlugin/target,server/api-service/openblocks-plugins/elasticSearchPlugin/target,server/api-service/openblocks-plugins/googleSheetsPlugin/target,server/api-service/openblocks-plugins/graphqlPlugin/target,server/api-service/openblocks-plugins/mongoPlugin/target,server/api-service/openblocks-plugins/mssqlPlugin/target,server/api-service/openblocks-plugins/mysqlPlugin/target,server/api-service/openblocks-plugins/openblocksApiPlugin/target,server/api-service/openblocks-plugins/oraclePlugin/target,server/api-service/openblocks-plugins/postgresPlugin/target,server/api-service/openblocks-plugins/redisPlugin/target,server/api-service/openblocks-plugins/restApiPlugin/target,server/api-service/openblocks-plugins/smtpPlugin/target,server/api-service/openblocks-plugins/snowflakePlugin/target,server/api-service/openblocks-plugins/sqlBasedPlugin/target
\ No newline at end of file