mirror of
https://github.com/jung-geun/DynamicDNS-SSL.git
synced 2025-12-19 20:44:40 +09:00
48 lines
1.4 KiB
YAML
48 lines
1.4 KiB
YAML
image:
|
|
name: sonarsource/sonar-scanner-cli:11.0
|
|
entrypoint: [""]
|
|
|
|
variables:
|
|
SONAR_USER_HOME: "${CI_PROJECT_DIR}/.sonar" # Defines the location of the analysis task cache
|
|
GIT_DEPTH: "0" # Tells git to fetch all the branches of the project, required by the analysis task
|
|
|
|
stages:
|
|
- sonarqube-check
|
|
- sonarqube-vulnerability-report
|
|
|
|
sonarqube-check:
|
|
stage: sonarqube-check
|
|
# dependencies:
|
|
# - get-binaries
|
|
# - build
|
|
cache:
|
|
policy: pull
|
|
key: "${CI_COMMIT_SHORT_SHA}"
|
|
paths:
|
|
- sonar-scanner/
|
|
|
|
|
|
script:
|
|
- sonar-scanner
|
|
allow_failure: true
|
|
rules:
|
|
- if: $CI_PIPELINE_SOURCE == 'merge_request_event'
|
|
- if: $CI_COMMIT_BRANCH == 'master'
|
|
- if: $CI_COMMIT_BRANCH == 'main'
|
|
- if: $CI_COMMIT_BRANCH == 'develop'
|
|
|
|
sonarqube-vulnerability-report:
|
|
stage: sonarqube-vulnerability-report
|
|
script:
|
|
- 'curl -u "${SONAR_TOKEN}:" "${SONAR_HOST_URL}/api/issues/gitlab_sast_export?projectKey=pieroot_cloudflare-ddns_e6da100b-a671-4736-87ac-9a41acda99f6&branch=${CI_COMMIT_BRANCH}&pullRequest=${CI_MERGE_REQUEST_IID}" -o gl-sast-sonar-report.json'
|
|
allow_failure: true
|
|
rules:
|
|
- if: $CI_PIPELINE_SOURCE == 'merge_request_event'
|
|
- if: $CI_COMMIT_BRANCH == 'master'
|
|
- if: $CI_COMMIT_BRANCH == 'main'
|
|
- if: $CI_COMMIT_BRANCH == 'develop'
|
|
artifacts:
|
|
expire_in: 1 day
|
|
reports:
|
|
sast: gl-sast-sonar-report.json
|