SonarSource/sonarqube-scan-action
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: SonarSource:v6.0.0
Branches Tags
SonarSource:master SonarSource:update-to-sonar-scanner-8.0.1.6346 SonarSource:update-to-sonar-scanner-8.0.0.6341 SonarSource:br-v4.2.1 SonarSource:br-v5.3.1 SonarSource:jh/fix_qa SonarSource:jh/update_version SonarSource:jh/SQSCANGHA-48_update_cirrus
SonarSource:v4 SonarSource:v4.2.2 SonarSource:v4.2 SonarSource:v5 SonarSource:v5.3.2 SonarSource:v5.3 SonarSource:v6.0 SonarSource:v6 SonarSource:v6.0.0 SonarSource:v5.3.1 SonarSource:v5.3.0 SonarSource:v5.2 SonarSource:v5.2.0 SonarSource:v5.1 SonarSource:v5.1.0 SonarSource:v5.0 SonarSource:v5.0.0 SonarSource:v4.2.1 SonarSource:v4.2.0 SonarSource:v4.1.0 SonarSource:v4.1 SonarSource:v4.0 SonarSource:v4.0.0 SonarSource:v3 SonarSource:v3.1 SonarSource:v3.1.0 SonarSource:v3.0 SonarSource:v3.0.0 SonarSource:v2.3 SonarSource:v2.3.0 SonarSource:v2 SonarSource:v2.2 SonarSource:v2.2.0 SonarSource:v2.1 SonarSource:v2.1.0 SonarSource:v2.0 SonarSource:v2.0.2 SonarSource:v2.0.1 SonarSource:v2.0.0 SonarSource:v1 SonarSource:v1.2 SonarSource:v1.2.0 SonarSource:v1.1.0 SonarSource:v1.0.0
...
compare: SonarSource:master
Branches Tags
SonarSource:update-to-sonar-scanner-8.0.1.6346 SonarSource:update-to-sonar-scanner-8.0.0.6341 SonarSource:master SonarSource:br-v4.2.1 SonarSource:br-v5.3.1 SonarSource:jh/fix_qa SonarSource:jh/update_version SonarSource:jh/SQSCANGHA-48_update_cirrus
SonarSource:v4 SonarSource:v4.2.2 SonarSource:v4.2 SonarSource:v5 SonarSource:v5.3.2 SonarSource:v5.3 SonarSource:v6.0 SonarSource:v6 SonarSource:v6.0.0 SonarSource:v5.3.1 SonarSource:v5.3.0 SonarSource:v5.2 SonarSource:v5.2.0 SonarSource:v5.1 SonarSource:v5.1.0 SonarSource:v5.0 SonarSource:v5.0.0 SonarSource:v4.2.1 SonarSource:v4.2.0 SonarSource:v4.1.0 SonarSource:v4.1 SonarSource:v4.0 SonarSource:v4.0.0 SonarSource:v3 SonarSource:v3.1 SonarSource:v3.1.0 SonarSource:v3.0 SonarSource:v3.0.0 SonarSource:v2.3 SonarSource:v2.3.0 SonarSource:v2 SonarSource:v2.2 SonarSource:v2.2.0 SonarSource:v2.1 SonarSource:v2.1.0 SonarSource:v2.0 SonarSource:v2.0.2 SonarSource:v2.0.1 SonarSource:v2.0.0 SonarSource:v1 SonarSource:v1.2 SonarSource:v1.2.0 SonarSource:v1.1.0 SonarSource:v1.0.0

4 Commits
v6.0.0 ... master

Author SHA1 Message Date
dependabot[bot]
40f5b61913 SQSCANGHA-123 NO-JIRA Bump actions/setup-node from 5 to 6 (#214) 2025-10-15 15:09:18 +02:00
Brandon Davis
9bf7c126a1 SQSCANGHA-122 Include caveats for running SCA (#213) 2025-10-09 06:21:35 -05:00
github-actions[bot]
ba6563cca7 Update SonarScanner CLI to 7.3.0.5189 (#212) 2025-10-06 09:29:17 +02:00
dependabot[bot]
5ffbad4454 SQSCANGHA-120 Bump actions/setup-node from 4 to 5 (#211) 2025-09-22 07:47:48 +02:00
4 changed files with 17 additions and 14 deletions
Expand all files Collapse all files

2
.github/workflows/unit-tests.yml vendored
View File

@@ -13,7 +13,7 @@ jobs:
- uses: actions/checkout@v5 - uses: actions/checkout@v5
- name: Setup Node.js - name: Setup Node.js
uses: actions/setup-node@v4 uses: actions/setup-node@v6
with: with:
node-version: "20" node-version: "20"
cache: "npm" cache: "npm"

5
README.md
View File

@@ -89,10 +89,13 @@ This GitHub Action will not work for all technologies. If you are in one of the
* **Your code is built with Gradle**. Read the documentation about our SonarScanner for Gradle in SonarQube [Server](https://docs.sonarsource.com/sonarqube-server/latest/analyzing-source-code/scanners/sonarscanner-for-gradle/) and [Cloud](https://docs.sonarsource.com/sonarqube-cloud/advanced-setup/ci-based-analysis/sonarscanner-for-gradle/). * **Your code is built with Gradle**. Read the documentation about our SonarScanner for Gradle in SonarQube [Server](https://docs.sonarsource.com/sonarqube-server/latest/analyzing-source-code/scanners/sonarscanner-for-gradle/) and [Cloud](https://docs.sonarsource.com/sonarqube-cloud/advanced-setup/ci-based-analysis/sonarscanner-for-gradle/).
* **You want to analyze a .NET solution**. Read the documentation about our SonarScanner for .NET in SonarQube [Server](https://docs.sonarsource.com/sonarqube-server/latest/analyzing-source-code/scanners/dotnet/introduction/) and [Cloud](https://docs.sonarsource.com/sonarqube-cloud/advanced-setup/ci-based-analysis/sonarscanner-for-dotnet/introduction/). * **You want to analyze a .NET solution**. Read the documentation about our SonarScanner for .NET in SonarQube [Server](https://docs.sonarsource.com/sonarqube-server/latest/analyzing-source-code/scanners/dotnet/introduction/) and [Cloud](https://docs.sonarsource.com/sonarqube-cloud/advanced-setup/ci-based-analysis/sonarscanner-for-dotnet/introduction/).
**Also, do not use this GitHub action if:** **Do not use this GitHub action if:**
* You want to run the action on C, C++, or Objective-C projects on a 32-bits system - build wrappers support only 64-bits OS. * You want to run the action on C, C++, or Objective-C projects on a 32-bits system - build wrappers support only 64-bits OS.
**If you want to use Software Composition Analysis (SCA)**
Dependency scanning with SonarQube Advanced Security SCA may not work correctly if scanning requires on-the-fly manifest file generation. See the SCA analysis environment requirement documentation for [Cloud](https://docs.sonarsource.com/sonarqube-cloud/advanced-security/analyzing-projects-for-dependencies-sca#appropriate-environment) or [Server](https://docs.sonarsource.com/sonarqube-server/advanced-security/analyzing-projects-for-dependencies#appropriate-environment).
## Key requirements ## Key requirements

2
action.yml
View File

@@ -19,7 +19,7 @@ inputs:
description: Version of the Sonar Scanner CLI to use description: Version of the Sonar Scanner CLI to use
required: false required: false
# to be kept in sync with sonar-scanner-version # to be kept in sync with sonar-scanner-version
default: 7.2.0.5079 default: 7.3.0.5189
scannerBinariesUrl: scannerBinariesUrl:
description: URL to download the Sonar Scanner CLI binaries from description: URL to download the Sonar Scanner CLI binaries from
required: false required: false

22
sonar-scanner-version
View File

@@ -1,11 +1,11 @@
sonar-scanner-version=7.2.0.5079 sonar-scanner-version=7.3.0.5189
sonar-scanner-url-windows-x64=https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-7.2.0.5079-windows-x64.zip sonar-scanner-url-windows-x64=https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-7.3.0.5189-windows-x64.zip
sonar-scanner-sha-windows-x64=71936f352206b63cb05ffbcd68e366e52d22916148cf4a2418789bc776f733ea sonar-scanner-sha-windows-x64=76d66269943d503381d9f5e273e5d7a90d6e5001c90615e63008ed1fc0b76921
sonar-scanner-url-linux-x64=https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-7.2.0.5079-linux-x64.zip sonar-scanner-url-linux-x64=https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-7.3.0.5189-linux-x64.zip
sonar-scanner-sha-linux-x64=da9f4e64a3d555f08ce38b5469ebd91fe2b311af473f7001a5ee5c1fd58b004b sonar-scanner-sha-linux-x64=7c201e1f16e64906da8fa7b77b3bda62e9c570f44323db763b4d083e0a1dbcd2
sonar-scanner-url-linux-aarch64=https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-7.2.0.5079-linux-aarch64.zip sonar-scanner-url-linux-aarch64=https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-7.3.0.5189-linux-aarch64.zip
sonar-scanner-sha-linux-aarch64=803ca725d463e95eeb7537515706367bb8e52bf05ac32174daf9773bdb36d1e2 sonar-scanner-sha-linux-aarch64=e35d13dcd861659ed021c63f858ad3abfc8e2637ed2eb45f8702d086aad8b09c
sonar-scanner-url-macosx-x64=https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-7.2.0.5079-macosx-x64.zip sonar-scanner-url-macosx-x64=https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-7.3.0.5189-macosx-x64.zip
sonar-scanner-sha-macosx-x64=7b9e92248ca740fff41503bfe5459c460bac43c501d80043cc4fbebb72dfc5fa sonar-scanner-sha-macosx-x64=624a947e04e1a0ba3e90f696fd3752a8cd3cb5ff35139a20a9a5eefec1128342
sonar-scanner-url-macosx-aarch64=https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-7.2.0.5079-macosx-aarch64.zip sonar-scanner-url-macosx-aarch64=https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-7.3.0.5189-macosx-aarch64.zip
sonar-scanner-sha-macosx-aarch64=c8adb3fbfe5485c17de193a217be765b66cbc10d6540057655afa3c3b5be6f61 sonar-scanner-sha-macosx-aarch64=6d4cc670a60b9c5351beada991736f508800aef4c376a48af8d588b25193c1db