Skip to content
This repository has been archived by the owner on Sep 26, 2023. It is now read-only.

chore: Add maven sonar workflow #1847

Merged
merged 16 commits into from
Nov 15, 2022
Merged

chore: Add maven sonar workflow #1847

merged 16 commits into from
Nov 15, 2022

Conversation

lqiu96
Copy link
Contributor

@lqiu96 lqiu96 commented Oct 26, 2022

The testing for maven migration done in #1829

@lqiu96
Copy link
Contributor Author

lqiu96 commented Oct 26, 2022

The sonar workflow isn't being invoked. Neither gradle nor maven jobs are running. There might be a syntax issue in the workflow file.

@lqiu96 lqiu96 mentioned this pull request Oct 26, 2022
Merged
@sonarqubecloud
Copy link

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

@lqiu96 lqiu96 requested a review from blakeli0 November 9, 2022 21:39
@lqiu96 lqiu96 marked this pull request as ready for review November 9, 2022 21:39
@lqiu96 lqiu96 requested review from a team as code owners November 9, 2022 21:39
blakeli0
blakeli0 reviewed Nov 9, 2022
View reviewed changes
.github/workflows/sonar.yaml Outdated
@@ -34,3 +34,34 @@ jobs:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
run: ./gradlew build sonarqube --info
build-maven:
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does this mean we now have two Sonar checks? If we feel confident, maybe we can just switch to Maven, this is not like a release job that we want to be more careful.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It does. I was debating between removing the gradle version and keeping it -- I figured it would be harmless (just email spam) with two sonar jobs.

I'm pretty confident that we can remove the gradle version if we just want to have only one sonar check.

@blakeli0 blakeli0 requested review from meltsufin, blakeli0 and a team November 9, 2022 21:50
@lqiu96
Copy link
Contributor Author

lqiu96 commented Nov 10, 2022

Taking a look at this discrepancy:
image

@sonarqubecloud
Copy link

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information

@lqiu96
Copy link
Contributor Author

lqiu96 commented Nov 15, 2022

Looking at docs/ resources online: Seems like if there are no relevant code changes, sonarqube won't display coverage/ duplication information.

Examples

@lqiu96
Copy link
Contributor Author

lqiu96 commented Nov 15, 2022

@blakeli0 Can you re-review this when you get a chance?

@lqiu96 lqiu96 merged commit 903ee87 into main Nov 15, 2022
@lqiu96 lqiu96 deleted the main-maven_sonar branch November 15, 2022 21:01
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@meltsufin meltsufin meltsufin approved these changes

@blakeli0 blakeli0 Awaiting requested review from blakeli0

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@lqiu96 @blakeli0 @meltsufin