File tree 2 files changed +43
-0
lines changed
2 files changed +43
-0
lines changed Original file line number Diff line number Diff line change 1+ stages :
2+ - sonarqube-check
3+ - sonarqube-vulnerability-report
4+
5+ sonarqube-check :
6+ stage : sonarqube-check
7+ image :
8+ name : sonarsource/sonar-scanner-cli:5.0
9+ entrypoint : [""]
10+ variables :
11+ SONAR_USER_HOME : " ${CI_PROJECT_DIR}/.sonar" # Defines the location of the analysis task cache
12+ GIT_DEPTH : " 0" # Tells git to fetch all the branches of the project, required by the analysis task
13+ cache :
14+ key : " ${CI_JOB_NAME}"
15+ paths :
16+ - .sonar/cache
17+ script :
18+ - sonar-scanner
19+ allow_failure : true
20+ only :
21+ - merge_requests
22+ - master
23+ - main
24+ - develop
25+
26+ sonarqube-vulnerability-report :
27+ stage : sonarqube-vulnerability-report
28+ script :
29+ - ' curl -u "${SONAR_TOKEN}:" "${SONAR_HOST_URL}/api/issues/gitlab_sast_export?projectKey=pkpdapp_pkpdapp_AYvyY13hVrxZ3l8OhvKN&branch=${CI_COMMIT_BRANCH}&pullRequest=${CI_MERGE_REQUEST_IID}" -o gl-sast-sonar-report.json'
30+ allow_failure : true
31+ only :
32+ - merge_requests
33+ - master
34+ - main
35+ - develop
36+ artifacts :
37+ expire_in : 1 day
38+ reports :
39+ sast : gl-sast-sonar-report.json
40+ dependencies :
41+ - sonarqube-check
Original file line number Diff line number Diff line change 1+ sonar.projectKey =pkpdapp_pkpdapp_AYvyY13hVrxZ3l8OhvKN
2+ sonar.qualitygate.wait =true
You can’t perform that action at this time.
0 commit comments