Maintenance: troubleshoot SonarCloud not running on forks #2730
Comments
dreamorosi
added
internal
github-project-automation
bot
moved this to Triage
in Powertools for AWS Lambda (TypeScript)
github-project-automation
bot
moved this from Backlog
to Coming soon
in Powertools for AWS Lambda (TypeScript)
|
This issue is now closed. Please be mindful that future comments are hard for our team to see. If you need more assistance, please either tag a team member or open a new issue that references this one. If you wish to keep having a conversation with other community members under this issue feel free to do so. |
github-actions
bot
added
pending-release
dreamorosi
added
confirmed
|
Reopening since SonarCloud is still not running. We have opened a thread on their community support forum: https://community.sonarsource.com/t/pull-requests-not-being-automatically-analysed/118489 And there's also a bigger thread with other customers being impacted as well: https://community.sonarsource.com/t/cloud-analysis-of-github-stopped-working/117641/4 |
github-project-automation
bot
moved this from Coming soon
to Pending review
in Powertools for AWS Lambda (TypeScript)
dreamorosi
moved this from Pending review
to Backlog
in Powertools for AWS Lambda (TypeScript)
dreamorosi
added
the
on-hold
github-actions
bot
added
pending-release
dreamorosi
added
on-hold
|
Based on new developments on the thread linked above, it seems that SonarCloud might be out of question. I'll leave this on hold for a few more weeks, and if needed be we'll start seriously looking into CodeQL, including how to improve its performance. |
|
SonarCloud re enabled analysis on PRs coming from forks, and said that they're now confident with the results reported by the tool. We'll monitor the reports during the next couple of weeks and if they're ok we'll close the issue and stick with SonarCloud. |
|
I've been monitoring Sonar analysis on PRs for the past couple weeks and they seem to be accurate. I'm going to close this issue as resolved and we are going to stay with Sonar for the foreseeable future. |
github-project-automation
bot
moved this from On hold
to Coming soon
in Powertools for AWS Lambda (TypeScript)
dreamorosi
added
completed
dreamorosi
moved this from Coming soon
to Shipped
in Powertools for AWS Lambda (TypeScript)
|
This issue is now closed. Please be mindful that future comments are hard for our team to see. If you need more assistance, please either tag a team member or open a new issue that references this one. If you wish to keep having a conversation with other community members under this issue feel free to do so. |
Summary
As per issue title, SonarCloud is not running on pull requests coming from forks. We use this tool as SAST / code quality tool and as of 3 weeks ago it was working on all PRs.
The tool has stopped working on PRs coming from external contributors (aka from forks) and we don't know why.
We should either troubleshoot this, or find an alternative that covers our needs.
Why is this needed?
So that we can continue running our code quality scans on all PRs.
Which area does this relate to?
Automation
Solution
No response
Acknowledgment
Future readers
Please react with 👍 and your use case to help us understand customer demand.
The text was updated successfully, but these errors were encountered: