Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

github actions maven snyk and sonar #8

Closed
wants to merge 15 commits into from
Closed

github actions maven snyk and sonar #8

wants to merge 15 commits into from

Conversation

tubbynl
Copy link
Contributor

@tubbynl tubbynl commented Jan 31, 2022
edited
Loading

add build steps

  • maven build
  • maven artifact publish
  • snyk check
  • snyk report uploaded as github 'Code scanning alerts'
  • sonarqube check
  • sonarqube report

for Snyk it requires the Snyk auth token to be added as Github action secret ( Settings -> Secrets -> New Repository Secret; name = SNYK_TOKEN )

@pschildkamp SonarQube is non-functional; i think most settings / config is there. But i can't create a correct "Organisation"

it fails (locally and on github actions) with

[ERROR] Failed to execute goal org.sonarsource.scanner.maven:sonar-maven-plugin:3.9.1.2184:sonar (default-cli) on project backend: You're not authorized to run analysis. Please contact the project administrator. -> [Help 1]

most config is handled with maven properties, only the SONAR_TOKEN is expected to be a env var and valid

tubbynl added 13 commits January 31, 2022 18:59
@tubbynl
test build step maven
ee17476
@tubbynl
uses setup-java (it seems that includes maven)
4eb1fe0
@tubbynl
with: is expected on the same ident as uses:
f2b992b
@tubbynl
enabled maven cache (it caches the local .m2/repository by default it…
123c854 
… seems)

https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-java-with-maven#caching-dependencies
@tubbynl
snyk minimal according to own docs
e9b8d61 
https://github.com/snyk/actions/tree/master/maven-3-jdk-11
@tubbynl
continue on error and upload file to github
4fee13f 
https://github.com/snyk/actions/tree/master/maven-3-jdk-11#uploading-snyk-scan-results-to-github-code-scanning
@tubbynl
maven steps consistent with normale mvn build (without wrapper; same …
b33c251 
…setup-java)
@tubbynl
copied sonarcloud-github-action-sample mostly; except the maven cache…
e96fa57 
… part (is done with setup-java)

https://github.com/SonarSource/sonarcloud-github-action-samples/blob/maven/.github/workflows/build-workflow.yml
@tubbynl
added sonar config in pom
2e52e20
@tubbynl
sonar.organization name format restrictions (org should be created on…
7aef0ee 
… sonarcloud)
@tubbynl
fix not having a coverage profile
0e569cb 
[WARNING] The requested profile "coverage" could not be activated because it does not exist.
@tubbynl
added maven coverage profile and jacoco/sonar plugin versions
2fee1bd 
https://github.com/SonarSource/sonarcloud-github-action-samples/blob/maven/pom.xml
@tubbynl
attempting to fix authorized error; imported github tubbynl as organi…
a44316e 
…sation in sonarqube

Error:  Failed to execute goal org.sonarsource.scanner.maven:sonar-maven-plugin:3.9.1.2184:sonar (default-cli) on project backend: You're not authorized to run analysis. Please contact the project administrator. -> [Help 1]
@tubbynl tubbynl requested a review from pschildkamp January 31, 2022 20:03
Stefanic
Stefanic approved these changes Jan 31, 2022
View reviewed changes
.github/workflows/analysis.yml Outdated
- uses: actions/setup-java@v2
with:
java-version: '11'
distribution: 'adopt'
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Adopt JDK is deprecated and replaced with Temurin (distribution: 'temurin').

pschildkamp
pschildkamp reviewed Feb 3, 2022
View reviewed changes
pom.xml
The two following properties are displayed on your project
at https://sonarcloud.io
-->
<sonar.organization>tubbynl</sonar.organization>
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

littil

@tubbynl
Copy link
Contributor Author

tubbynl commented Apr 3, 2022

replaced by #21

@tubbynl tubbynl closed this Apr 3, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@pschildkamp pschildkamp pschildkamp left review comments

@Stefanic Stefanic Stefanic approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@tubbynl @pschildkamp @Stefanic