Use develocity-actions/setup-maven to surface Build Scan links

Don't add PR comment with build scan links - scans aren't published for PR builds against forks

Author: tylerbertrand

.github/workflows/codeql-analysis.yml

@@ -92,10 +92,14 @@ jobs:
         distribution: 'temurin'
         java-version: '21'
 
+    - name: Setup Develocity
+      uses: gradle/develocity-actions/[email protected]
+      with:
+        add-pr-comment: false
+        develocity-access-key: ${{ secrets.DEVELOCITY_ACCESS_KEY }}
+
     - name: Compile project
       run: ./mvnw -B -ntp clean package -Pquickbuild -Dtoolchain.skip=true
-      env:
-        DEVELOCITY_ACCESS_KEY: ${{ secrets.DEVELOCITY_ACCESS_KEY }}
 
     - name: Perform CodeQL Analysis
       uses: github/codeql-action/analyze@v2

.github/workflows/receive-pr.yml

@@ -28,6 +28,11 @@ jobs:
           java-version: '21'
           distribution: 'temurin'
           cache: 'maven'
+      - name: Setup Develocity
+        uses: gradle/develocity-actions/[email protected]
+        with:
+          add-pr-comment: false
+          develocity-access-key: ${{ secrets.DEVELOCITY_ACCESS_KEY }}
 
       # Capture the PR number
       # https://docs.github.com/en/actions/using-workflows/events-that-trigger-workflows#using-data-from-the-triggering-workflow
@@ -43,8 +48,6 @@ jobs:
       # Execute recipes
       - name: Apply OpenRewrite recipes
         run: ./mvnw -Dtoolchain.skip=true -Dlicense.skip=true -DskipTests=true -P openrewrite clean install
-        env:
-          DEVELOCITY_ACCESS_KEY: ${{ secrets.DEVELOCITY_ACCESS_KEY }}
 
       # Capture the diff
       - name: Create patch