Skip to content

Sonar Security Scan #24

Sonar Security Scan

Sonar Security Scan #24

Workflow file for this run

name: SonarCloud Security Scan
on:
push:
branches:
- main
pull_request:
workflow_dispatch:
jobs:
sonarcloud_security_scan:
name: SonarCloud
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
with:
fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis
- name: SonarCloud Scan
uses: SonarSource/sonarcloud-github-action@master
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
- name: Check vulnerabilities
run: |
if [ $? -ne 0 ]; then
echo "Vulnerabilities found. Reverting to previous version..."
git config --global user.email "[email protected]"
git config --global user.name "rodrigo3829l"
git reset --hard HEAD^
git push https://github.com/rodrigo3829l/db_api_mygarden_llc.git --force
else
echo "No vulnerabilities found. Proceeding with the current version..."
fi