Sonar analysis pipeline(s) need attention

[TimHess]

Sonar analysis is triggered in both Steeltoe.All and sonar-analyze but should only happen in one place. Removing sonar-analyze completely might be the best idea.

Additionally, neither pipeline produces code coverage analysis in Sonar or on the PR. Ideally, we would have code coverage analysis reported directly on the PR, but it is already available in the Steeltoe.All build inside DevOps (if it can't be fixed reasonably).