SonarSource/sonarqube-scan-action
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: SonarSource:v5.3.2
Branches Tags
SonarSource:master SonarSource:update-to-sonar-scanner-8.0.1.6346 SonarSource:update-to-sonar-scanner-8.0.0.6341 SonarSource:br-v4.2.1 SonarSource:br-v5.3.1 SonarSource:jh/fix_qa SonarSource:jh/update_version SonarSource:jh/SQSCANGHA-48_update_cirrus
SonarSource:v4 SonarSource:v4.2.2 SonarSource:v4.2 SonarSource:v5 SonarSource:v5.3.2 SonarSource:v5.3 SonarSource:v6.0 SonarSource:v6 SonarSource:v6.0.0 SonarSource:v5.3.1 SonarSource:v5.3.0 SonarSource:v5.2 SonarSource:v5.2.0 SonarSource:v5.1 SonarSource:v5.1.0 SonarSource:v5.0 SonarSource:v5.0.0 SonarSource:v4.2.1 SonarSource:v4.2.0 SonarSource:v4.1.0 SonarSource:v4.1 SonarSource:v4.0 SonarSource:v4.0.0 SonarSource:v3 SonarSource:v3.1 SonarSource:v3.1.0 SonarSource:v3.0 SonarSource:v3.0.0 SonarSource:v2.3 SonarSource:v2.3.0 SonarSource:v2 SonarSource:v2.2 SonarSource:v2.2.0 SonarSource:v2.1 SonarSource:v2.1.0 SonarSource:v2.0 SonarSource:v2.0.2 SonarSource:v2.0.1 SonarSource:v2.0.0 SonarSource:v1 SonarSource:v1.2 SonarSource:v1.2.0 SonarSource:v1.1.0 SonarSource:v1.0.0
..
compare: SonarSource:jh/fix_qa
Branches Tags
SonarSource:update-to-sonar-scanner-8.0.1.6346 SonarSource:update-to-sonar-scanner-8.0.0.6341 SonarSource:master SonarSource:br-v4.2.1 SonarSource:br-v5.3.1 SonarSource:jh/fix_qa SonarSource:jh/update_version SonarSource:jh/SQSCANGHA-48_update_cirrus
SonarSource:v4 SonarSource:v4.2.2 SonarSource:v4.2 SonarSource:v5 SonarSource:v5.3.2 SonarSource:v5.3 SonarSource:v6.0 SonarSource:v6 SonarSource:v6.0.0 SonarSource:v5.3.1 SonarSource:v5.3.0 SonarSource:v5.2 SonarSource:v5.2.0 SonarSource:v5.1 SonarSource:v5.1.0 SonarSource:v5.0 SonarSource:v5.0.0 SonarSource:v4.2.1 SonarSource:v4.2.0 SonarSource:v4.1.0 SonarSource:v4.1 SonarSource:v4.0 SonarSource:v4.0.0 SonarSource:v3 SonarSource:v3.1 SonarSource:v3.1.0 SonarSource:v3.0 SonarSource:v3.0.0 SonarSource:v2.3 SonarSource:v2.3.0 SonarSource:v2 SonarSource:v2.2 SonarSource:v2.2.0 SonarSource:v2.1 SonarSource:v2.1.0 SonarSource:v2.0 SonarSource:v2.0.2 SonarSource:v2.0.1 SonarSource:v2.0.0 SonarSource:v1 SonarSource:v1.2 SonarSource:v1.2.0 SonarSource:v1.1.0 SonarSource:v1.0.0

10 Commits
v5.3.2 ... jh/fix_qa

Author SHA1 Message Date
Julien HENRY
802bf88184 Revert test to show expected behavior (USER-933) 2025-09-08 09:24:24 +02:00
Julien HENRY
a6104e7ee4 Try with string-argv 2025-09-05 16:21:13 +02:00
Julien HENRY
42fef39f2a Another try 2025-09-05 16:18:24 +02:00
Julien HENRY
ef61b6021f Fix JS import 2025-09-05 15:32:19 +02:00
Julien HENRY
500f8e1411 Add support for Unix 2025-09-05 13:51:39 +02:00
Julien HENRY
4690589d97 Fix parsing 2025-09-05 13:49:53 +02:00
Julien HENRY
cdb14cba33 Experiment 2025-09-05 12:47:47 +02:00
Julien HENRY
3b1a0d504d Disable fail fast on matrix jobs 2025-09-05 11:39:53 +02:00
Julien HENRY
cdefb11fbe Fix test assertion 2025-09-05 11:23:26 +02:00
SonarTech
5837ebfcca BUILD-8875: Migrate to standardized GitHub runner names 
Co-authored-by: Julien HENRY <julien.henry@sonarsource.com>
 2025-09-02 10:10:38 +02:00
11 changed files with 64 additions and 49 deletions
Expand all files Collapse all files

2
.github/workflows/PullRequestClosed.yml vendored
View File

@@ -7,7 +7,7 @@ on:
jobs: jobs:
PullRequestClosed_job: PullRequestClosed_job:
name: Pull Request Closed name: Pull Request Closed
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
permissions: permissions:
id-token: write id-token: write
pull-requests: read pull-requests: read

2
.github/workflows/PullRequestCreated.yml vendored
View File

@@ -7,7 +7,7 @@ on:
jobs: jobs:
PullRequestCreated_job: PullRequestCreated_job:
name: Pull Request Created name: Pull Request Created
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
permissions: permissions:
id-token: write id-token: write
# For external PR, ticket should be created manually # For external PR, ticket should be created manually

2
.github/workflows/RequestReview.yml vendored
View File

@@ -7,7 +7,7 @@ on:
jobs: jobs:
RequestReview_job: RequestReview_job:
name: Request review name: Request review
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
permissions: permissions:
id-token: write id-token: write
# For external PR, ticket should be moved manually # For external PR, ticket should be moved manually

2
.github/workflows/SubmitReview.yml vendored
View File

@@ -7,7 +7,7 @@ on:
jobs: jobs:
SubmitReview_job: SubmitReview_job:
name: Submit Review name: Submit Review
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
permissions: permissions:
id-token: write id-token: write
pull-requests: read pull-requests: read

2
.github/workflows/qa-deprecated-c-cpp.yml vendored
View File

@@ -12,7 +12,7 @@ jobs:
name: Action outputs name: Action outputs
strategy: strategy:
matrix: matrix:
os: [ubuntu-latest-large, windows-latest-large, macos-latest, macos-13] os: [github-ubuntu-latest-s, github-windows-latest-s, macos-latest, macos-13]
cache: [true, false] cache: [true, false]
include: include:
- arch: X64 - arch: X64

2
.github/workflows/qa-install-build-wrapper.yml vendored
View File

@@ -12,7 +12,7 @@ jobs:
name: Action outputs name: Action outputs
strategy: strategy:
matrix: matrix:
os: [ubuntu-latest-large, windows-latest-large, macos-latest, macos-13] os: [github-ubuntu-latest-s, github-windows-latest-s, macos-latest, macos-13]
cache: [true, false] cache: [true, false]
include: include:
- arch: X64 - arch: X64

66
.github/workflows/qa-main.yml vendored
View File

@@ -12,8 +12,9 @@ jobs:
name: > name: >
No inputs No inputs
strategy: strategy:
fail-fast: false
matrix: matrix:
os: [ ubuntu-latest-large, macos-latest ] os: [ github-ubuntu-latest-s, macos-latest ]
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
@@ -31,8 +32,9 @@ jobs:
name: > name: >
'args' input 'args' input
strategy: strategy:
fail-fast: false
matrix: matrix:
os: [ ubuntu-latest-large, windows-latest-large, macos-latest ] os: [ github-ubuntu-latest-s, github-windows-latest-s, macos-latest ]
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
@@ -48,14 +50,15 @@ jobs:
- name: Assert - name: Assert
run: | run: |
./test/assertFileContains ./output.properties "sonar.someArg=aValue" ./test/assertFileContains ./output.properties "sonar.someArg=aValue"
./test/assertFileContains ./output.properties 'sonar.anotherArgWithSpaces="Another Value"' ./test/assertFileContains ./output.properties "sonar.anotherArgWithSpaces=Another Value"
./test/assertFileContains ./output.properties "sonar.argWithSingleQuotes='Another Value'" ./test/assertFileContains ./output.properties "sonar.argWithSingleQuotes=Another Value"
argsInputInjectionTest: argsInputInjectionTest:
name: > name: >
'args' input with command injection will fail 'args' input with command injection will fail
strategy: strategy:
fail-fast: false
matrix: matrix:
os: [ ubuntu-latest-large, windows-latest-large, macos-latest ] os: [ github-ubuntu-latest-s, github-windows-latest-s, macos-latest ]
args: [ -Dsonar.someArg=aValue && echo "Injection", -Dsonar.someArg="value\"; whoami; echo \"" ] args: [ -Dsonar.someArg=aValue && echo "Injection", -Dsonar.someArg="value\"; whoami; echo \"" ]
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
steps: steps:
@@ -63,6 +66,7 @@ jobs:
with: with:
token: ${{ secrets.GITHUB_TOKEN }} token: ${{ secrets.GITHUB_TOKEN }}
- name: Run action with args - name: Run action with args
id: runTest
uses: ./ uses: ./
continue-on-error: true continue-on-error: true
with: with:
@@ -80,8 +84,9 @@ jobs:
name: > name: >
'args' input with backticks injection does not execute command 'args' input with backticks injection does not execute command
strategy: strategy:
fail-fast: false
matrix: matrix:
os: [ ubuntu-latest-large, windows-latest-large, macos-latest ] os: [ github-ubuntu-latest-s, github-windows-latest-s, macos-latest ]
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
@@ -109,7 +114,7 @@ jobs:
'args' input with dollar command injection does not execute command 'args' input with dollar command injection does not execute command
strategy: strategy:
matrix: matrix:
os: [ ubuntu-latest-large, windows-latest-large, macos-latest ] os: [ github-ubuntu-latest-s, github-windows-latest-s, macos-latest ]
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
@@ -136,7 +141,7 @@ jobs:
'args' input with other command injection variants does not execute command 'args' input with other command injection variants does not execute command
strategy: strategy:
matrix: matrix:
os: [ ubuntu-latest-large, windows-latest-large, macos-latest ] os: [ github-ubuntu-latest-s, github-windows-latest-s, macos-latest ]
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
@@ -166,7 +171,7 @@ jobs:
'projectBaseDir' input 'projectBaseDir' input
strategy: strategy:
matrix: matrix:
os: [ ubuntu-latest-large, windows-latest-large, macos-latest ] os: [ github-ubuntu-latest-s, github-windows-latest-s, macos-latest ]
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
@@ -187,7 +192,7 @@ jobs:
scannerVersionTest: scannerVersionTest:
name: > name: >
'scannerVersion' input 'scannerVersion' input
runs-on: ubuntu-latest-large # assumes default RUNNER_ARCH for linux is X64 runs-on: github-ubuntu-latest-s # assumes default RUNNER_ARCH for linux is X64
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -207,7 +212,7 @@ jobs:
scannerBinariesUrlTest: scannerBinariesUrlTest:
name: > name: >
'scannerBinariesUrl' input with invalid URL 'scannerBinariesUrl' input with invalid URL
runs-on: ubuntu-latest-large # assumes default RUNNER_ARCH for linux is X64 runs-on: github-ubuntu-latest-s # assumes default RUNNER_ARCH for linux is X64
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -235,7 +240,7 @@ jobs:
scannerBinariesUrlIsEscapedWithWget: scannerBinariesUrlIsEscapedWithWget:
name: > name: >
'scannerBinariesUrl' is escaped with wget so special chars are not injected in the download command 'scannerBinariesUrl' is escaped with wget so special chars are not injected in the download command
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -256,7 +261,7 @@ jobs:
scannerBinariesUrlIsEscapedWithCurl: scannerBinariesUrlIsEscapedWithCurl:
name: > name: >
'scannerBinariesUrl' is escaped with curl so special chars are not injected in the download command 'scannerBinariesUrl' is escaped with curl so special chars are not injected in the download command
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -285,7 +290,7 @@ jobs:
dontFailGradleTest: dontFailGradleTest:
name: > name: >
Don't fail on Gradle project Don't fail on Gradle project
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -306,7 +311,7 @@ jobs:
dontFailGradleKotlinTest: dontFailGradleKotlinTest:
name: > name: >
Don't fail on Kotlin Gradle project Don't fail on Kotlin Gradle project
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -327,7 +332,7 @@ jobs:
dontFailMavenTest: dontFailMavenTest:
name: > name: >
Don't fail on Maven project Don't fail on Maven project
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -346,7 +351,7 @@ jobs:
run: | run: |
./test/assertFileExists ./output.properties ./test/assertFileExists ./output.properties
runAnalysisTest: runAnalysisTest:
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
services: services:
sonarqube: sonarqube:
image: sonarqube:lts-community image: sonarqube:lts-community
@@ -380,8 +385,9 @@ jobs:
name: > name: >
'RUNNER_DEBUG' is used 'RUNNER_DEBUG' is used
strategy: strategy:
fail-fast: false
matrix: matrix:
os: [ ubuntu-latest-large, windows-latest-large, macos-latest ] os: [ github-ubuntu-latest-s, github-windows-latest-s, macos-latest ]
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
@@ -399,7 +405,7 @@ jobs:
run: | run: |
./test/assertFileContains ./output.properties "sonar.verbose=true" ./test/assertFileContains ./output.properties "sonar.verbose=true"
runAnalysisWithCacheTest: runAnalysisWithCacheTest:
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
services: services:
sonarqube: sonarqube:
image: sonarqube:lts-community image: sonarqube:lts-community
@@ -439,8 +445,9 @@ jobs:
name: > name: >
'SONARCLOUD_URL' is used 'SONARCLOUD_URL' is used
strategy: strategy:
fail-fast: false
matrix: matrix:
os: [ ubuntu-latest-large, windows-latest-large, macos-latest ] os: [ github-ubuntu-latest-s, github-windows-latest-s, macos-latest ]
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
@@ -459,7 +466,7 @@ jobs:
./test/assertFileContains ./output.properties "sonar.scanner.sonarcloudUrl=mirror.sonarcloud.io" ./test/assertFileContains ./output.properties "sonar.scanner.sonarcloudUrl=mirror.sonarcloud.io"
dontFailWhenMissingWgetButCurlAvailable: dontFailWhenMissingWgetButCurlAvailable:
name: Don't fail when missing wget but curl available name: Don't fail when missing wget but curl available
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -485,7 +492,7 @@ jobs:
./test/assertFileExists ./output.properties ./test/assertFileExists ./output.properties
dontFailWhenMissingCurlButWgetAvailable: dontFailWhenMissingCurlButWgetAvailable:
name: Don't fail when missing curl but wget available name: Don't fail when missing curl but wget available
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -512,7 +519,7 @@ jobs:
./test/assertFileExists ./output.properties ./test/assertFileExists ./output.properties
failWhenBothWgetAndCurlMissing: failWhenBothWgetAndCurlMissing:
name: Fail when both wget and curl are missing name: Fail when both wget and curl are missing
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -545,7 +552,7 @@ jobs:
curlPerformsRedirect: curlPerformsRedirect:
name: > name: >
curl performs redirect when scannerBinariesUrl returns 3xx curl performs redirect when scannerBinariesUrl returns 3xx
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -578,8 +585,9 @@ jobs:
name: > name: >
'SONAR_ROOT_CERT' is converted to truststore 'SONAR_ROOT_CERT' is converted to truststore
strategy: strategy:
fail-fast: false
matrix: matrix:
os: [ ubuntu-latest-large, windows-latest-large, macos-latest ] os: [ github-ubuntu-latest-s, github-windows-latest-s, macos-latest ]
runs-on: ${{ matrix.os }} runs-on: ${{ matrix.os }}
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
@@ -631,7 +639,7 @@ jobs:
analysisWithSslCertificate: analysisWithSslCertificate:
name: > name: >
Analysis takes into account 'SONAR_ROOT_CERT' Analysis takes into account 'SONAR_ROOT_CERT'
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -739,7 +747,7 @@ jobs:
overridesScannerLocalFolderWhenPresent: # can happen in uncleaned self-hosted runners overridesScannerLocalFolderWhenPresent: # can happen in uncleaned self-hosted runners
name: > name: >
'SCANNER_LOCAL_FOLDER' is cleaned with warning when present 'SCANNER_LOCAL_FOLDER' is cleaned with warning when present
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -773,7 +781,7 @@ jobs:
updateTruststoreWhenPresent: # can happen in uncleaned self-hosted runners updateTruststoreWhenPresent: # can happen in uncleaned self-hosted runners
name: > name: >
truststore.p12 is updated when present truststore.p12 is updated when present
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -902,7 +910,7 @@ jobs:
scannerVersionValidationTest: scannerVersionValidationTest:
name: > name: >
'scannerVersion' input validation 'scannerVersion' input validation
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:

8
.github/workflows/qa-scripts.yml vendored
View File

@@ -10,7 +10,7 @@ on:
jobs: jobs:
create-install-dir-test: create-install-dir-test:
name: create_install_path.sh name: create_install_path.sh
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -107,7 +107,7 @@ jobs:
grep "=== Script failed ===" output grep "=== Script failed ===" output
setup-script-test: setup-script-test:
name: configure_paths.sh name: configure_paths.sh
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
env: env:
INSTALL_PATH: 'install-directory' INSTALL_PATH: 'install-directory'
SONAR_HOST_URL: 'http://sonar-host.com' SONAR_HOST_URL: 'http://sonar-host.com'
@@ -250,7 +250,7 @@ jobs:
grep "=== Script failed ===" output grep "=== Script failed ===" output
download-script-test: download-script-test:
name: download.sh name: download.sh
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:
@@ -319,7 +319,7 @@ jobs:
grep "=== Script failed ===" output grep "=== Script failed ===" output
fetch-latest-version-test: fetch-latest-version-test:
name: fetch_latest_version.sh name: fetch_latest_version.sh
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
steps: steps:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
with: with:

2
.github/workflows/update-tags.yml vendored
View File

@@ -7,7 +7,7 @@ on:
jobs: jobs:
generate: generate:
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
permissions: permissions:
contents: write contents: write

4
.github/workflows/version_update.yml vendored
View File

@@ -7,7 +7,7 @@ on:
jobs: jobs:
check-version: check-version:
name: Check for sonar-scanner version update name: Check for sonar-scanner version update
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
outputs: outputs:
should_update: ${{ steps.version-check.outputs.should_update }} should_update: ${{ steps.version-check.outputs.should_update }}
new-version: ${{ steps.latest-version.outputs.sonar-scanner-version }} new-version: ${{ steps.latest-version.outputs.sonar-scanner-version }}
@@ -43,7 +43,7 @@ jobs:
update-version: update-version:
name: Prepare pull request for sonar-scanner version update name: Prepare pull request for sonar-scanner version update
needs: check-version needs: check-version
runs-on: ubuntu-latest-large runs-on: github-ubuntu-latest-s
permissions: permissions:
contents: write contents: write
pull-requests: write pull-requests: write

21
action.yml
View File

@@ -31,9 +31,6 @@ runs:
env: env:
INPUT_PROJECTBASEDIR: ${{ inputs.projectBaseDir }} INPUT_PROJECTBASEDIR: ${{ inputs.projectBaseDir }}
INPUT_SCANNERVERSION: ${{ inputs.scannerVersion }} INPUT_SCANNERVERSION: ${{ inputs.scannerVersion }}
- name: Vulnerability warning
shell: bash
run: echo "::warning title=Vulnerability warning::This version of the SonarQube Scanner GitHub Action is no longer supported and contains a security vulnerability. Please update your workflow to use sonarsource/sonarqube-scan-action@v6 for the latest security patches and features. For more information visit https://community.sonarsource.com/gha-v6-update"
- name: Load Sonar Scanner CLI from cache - name: Load Sonar Scanner CLI from cache
id: sonar-scanner-cli id: sonar-scanner-cli
uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 #v4.2.4 uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 #v4.2.4
@@ -54,9 +51,19 @@ runs:
run: echo "${RUNNER_TEMP}/sonar-scanner-cli-${{ inputs.scannerVersion }}-${{ runner.os }}-${{ runner.arch }}/bin" >> $GITHUB_PATH run: echo "${RUNNER_TEMP}/sonar-scanner-cli-${{ inputs.scannerVersion }}-${{ runner.os }}-${{ runner.arch }}/bin" >> $GITHUB_PATH
shell: bash shell: bash
- name: Run SonarScanner - name: Run SonarScanner
run: ${GITHUB_ACTION_PATH}/scripts/run-sonar-scanner.sh uses: satackey/action-js-inline@v0.0.2
shell: bash with:
required-packages: "string-argv"
script: |
const core = require('@actions/core')
const exec = require('@actions/exec')
const { parseArgsStringToArgv } = require('string-argv');
const IS_WINDOWS = process.platform === 'win32'
const runnerTemp = process.env.RUNNER_TEMP
var args = parseArgsStringToArgv(core.getInput('args'));
exec.exec(IS_WINDOWS ? 'sonar-scanner.bat' : 'sonar-scanner', args);
env: env:
INPUT_ARGS: ${{ inputs.args }} INPUT_ARGS: ${{ inputs.args }}
INPUT_PROJECTBASEDIR: ${{ inputs.projectBaseDir }}
SONAR_SCANNER_JRE: ${{ runner.temp }}/sonar-scanner-cli-${{ inputs.scannerVersion }}-${{ runner.os }}-${{ runner.arch }}/jre