jung-geun/PSO
1
0
Fork 0
mirror of https://github.com/jung-geun/PSO.git synced 2025-12-19 20:44:39 +09:00
Code Issues Packages Projects Releases Wiki Activity

Update sonarqube-check.gitlab-ci.yml

Browse Source
This commit is contained in:
jung bong
2024-03-12 12:03:59 +00:00
parent 1bdc6d1b1f
commit 25dabbb715
1 changed files with 25 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
.gitlab/ci/sonarqube-check.gitlab-ci.yml
View File

@@ -1,16 +1,20 @@
stages:
- sonarqube-check
- sonarqube-vulnerability-report
sonarqube-check: sonarqube-check:
stage: sonarqube-check stage: sonarqube-check
image: image:
name: sonarsource/sonar-scanner-cli:5.0 name: sonarsource/sonar-scanner-cli:5.0
entrypoint: [""] entrypoint: [""]
variables: variables:
SONAR_USER_HOME: "${CI_PROJECT_DIR}/.sonar" # Defines the location of the analysis task cache SONAR_USER_HOME: "${CI_PROJECT_DIR}/.sonar" # Defines the location of the analysis task cache
GIT_DEPTH: "0" # Tells git to fetch all the branches of the project, required by the analysis task GIT_DEPTH: "0" # Tells git to fetch all the branches of the project, required by the analysis task
cache: cache:
key: "${CI_JOB_NAME}" key: "${CI_JOB_NAME}"
paths: paths:
- .sonar/cache - .sonar/cache
script: script:
- sonar-scanner - sonar-scanner
allow_failure: true allow_failure: true
only: only:
@@ -18,3 +22,20 @@ sonarqube-check:
- master - master
- main - main
- develop - develop
sonarqube-vulnerability-report:
stage: sonarqube-vulnerability-report
script:
- 'curl -u "${SONAR_TOKEN}:" "${SONAR_HOST_URL}/api/issues/gitlab_sast_export?projectKey=pieroot_pso_AY4yioUduAwlZ9Y7RLBU&branch=${CI_COMMIT_BRANCH}&pullRequest=${CI_MERGE_REQUEST_IID}" -o gl-sast-sonar-report.json'
allow_failure: true
only:
- merge_requests
- master
- main
- develop
artifacts:
expire_in: 1 day
reports:
sast: gl-sast-sonar-report.json
dependencies:
- sonarqube-check