diff --git a/.gitea/workflows/sonarqube.yml b/.gitea/workflows/sonarqube.yml
index 4abb0ba..e24d4fc 100644
--- a/.gitea/workflows/sonarqube.yml
+++ b/.gitea/workflows/sonarqube.yml
@@ -10,7 +10,7 @@ jobs:
     runs-on: ubuntu-latest 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v8.1.0
         with:
           fetch-depth: 0 
 
diff --git a/.gitea/workflows/sonarqube_manual.yml b/.gitea/workflows/sonarqube_manual.yml
new file mode 100644
index 0000000..abbceb5
--- /dev/null
+++ b/.gitea/workflows/sonarqube_manual.yml
@@ -0,0 +1,29 @@
+on:
+  workflow_dispatch:
+    inputs:
+      reason:
+        description: 'Reason for running'
+        required: false
+        default: 'Manual trigger'
+  push:
+    branches: [main]
+  pull_request:
+    types: [opened, synchronize, reopened]
+
+jobs:
+  sonarqube:
+    # 1. Update this to match your EXACT Gitea runner label
+    runs-on: ubuntu-latest 
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v8.1.0
+        with:
+          fetch-depth: 0 
+
+      - name: SonarQube Scan
+        # 2. Replaced with the official, actively maintained action
+        uses: SonarSource/sonarqube-scan-action@v8.1.0
+        env:
+          # 3. SonarSource uses environment variables, not 'with' parameters
+          SONAR_HOST_URL: ${{ secrets.SONARQUBE_HOST }}
+          SONAR_TOKEN: ${{ secrets.SONARQUBE_TOKEN }}