Skip to content

Blue-Express/sonar-scan-action

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits
CODEOWNERS
CODEOWNERS
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
action.yaml
action.yaml
 
 
break_build.sh
break_build.sh
 
 
entrypoint.sh
entrypoint.sh
 
 

Repository files navigation

Sonar Scan GitHub Action

Using this GitHub Action, scan your code with SonarQube scanner to detects bugs, vulnerabilities and code smells, stopping the CI/CD process if the code doesn't pass the Quality Gate.

Requirements

  • Have SonarQube on server. Install now and find the setup instructions.

Usage

In your workflow YAML file (located in .github/workflows directory) configure this action as shown below:

on: push
name: <a name>
jobs:
  build:
    runs-on: ubuntu-latest
    steps:
    - uses: actions/checkout@master
    - name: SonarQube Scan
      uses: Blue-Express/sonar-scan-action@master
      with:
        sonarqube_url: ${{ secrets.SONAR_HOST }}
        sonarqube_token: ${{ secrets.SONAR_TOKEN }}
        projectKey: my-project-key

Analysis base directory/project name/version can be changed with the optional inputs:

uses: Blue-Express/sonar-scan-action@master
with:
  projectBaseDir: "/path/to/my-project"
  projectName: "my-project-name"
  projectVersion: "v1.0.1"

Secrets

  • SONAR_HOST - (Required) this is the SonarQube server URL.
  • SONAR_TOKEN - (Required) the login or authentication token of a SonarQube user with Execute Analysis permission on the project.

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages