File tree Expand file tree Collapse file tree 1 file changed +38
-0
lines changed Expand file tree Collapse file tree 1 file changed +38
-0
lines changed Original file line number Diff line number Diff line change 1+ name : SonarQube Cloud
2+ on :
3+ push :
4+ branches :
5+ - main
6+ pull_request :
7+ types : [opened, synchronize, reopened]
8+ jobs :
9+ build :
10+ name : Build and analyze
11+ runs-on : ubuntu-latest
12+ steps :
13+ - uses : actions/checkout@v4
14+ with :
15+ fetch-depth : 0 # Shallow clones should be disabled for a better relevancy of analysis
16+ - name : Set up JDK 17
17+ uses : actions/setup-java@v4
18+ with :
19+ java-version : 17
20+ distribution : ' zulu' # Alternative distribution options are available.
21+ - name : Cache SonarQube Cloud packages
22+ uses : actions/cache@v4
23+ with :
24+ path : ~/.sonar/cache
25+ key : ${{ runner.os }}-sonar
26+ restore-keys : ${{ runner.os }}-sonar
27+ - name : Cache Maven packages
28+ uses : actions/cache@v4
29+ with :
30+ path : ~/.m2
31+ key : ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }}
32+ restore-keys : ${{ runner.os }}-m2
33+ - name : Build and analyze
34+ env :
35+ GITHUB_TOKEN : ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
36+ SONAR_TOKEN : ${{ secrets.SONAR_TOKEN }}
37+ run : mvn -B verify org.sonarsource.scanner.maven:sonar-maven-plugin:sonar -Dsonar.projectKey=DevSecOps-AppSec_RSAEncryptionServiceJava
38+
You can’t perform that action at this time.
0 commit comments