Sonar

sonar now requires 17+ #1107

Summary
Jobs
- build
Run details
- Usage
- Workflow file

Workflow file for this run

	name: Sonar

	on:
	push:
	branches: [ "main" ]
	pull_request:
	branches: [ "main" ]
	schedule:
	- cron: '0 8 * * 1'

	permissions:
	contents: read

	jobs:
	build:
	runs-on: ubuntu-latest
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1
	with:
	egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs

	- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v2.6.0
	with:
	fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis

	- name: Set up JDK 17
	uses: actions/setup-java@387ac29b308b003ca37ba93a6cab5eb57c8f5f93 # v1.4.3
	with:
	java-version: 17
	distribution: 'temurin'
	cache: maven

	- name: Set up Node
	uses: actions/setup-node@b39b52d1213e96004bfcb1c61a8a6fa8ab84f3e8 # v4.0.1
	with:
	node-version: '14.15.1'
	cache: 'yarn'
	cache-dependency-path: report/report-ng/yarn.lock

	- name: Cache SonarCloud packages
	uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # v3.3.2
	with:
	path: ~/.sonar/cache
	key: ${{ runner.os }}-sonar
	restore-keys: ${{ runner.os }}-sonar

	- name: Cache Maven packages
	uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # v3.3.2
	with:
	path: ~/.m2
	key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }}
	restore-keys: ${{ runner.os }}-m2

	- name: Build and analyze
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
	SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
	run: mvn -B -Pcoverage -Dnode=system verify org.sonarsource.scanner.maven:sonar-maven-plugin:sonar -Dsonar.projectKey=Mastercard_flow

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

sonar now requires 17+ #1107

Workflow file

sonar now requires 17+ #1107

Jobs

Run details

Workflow file for this run