From 18d8f6ce6385b49399e8242abd5ce9f6165f8e40 Mon Sep 17 00:00:00 2001 From: Alexander Saprykin Date: Wed, 9 Oct 2024 17:46:48 +0200 Subject: [PATCH] SonarCloud CI-based analysis (#2295) No-Issue --- .github/workflows/ci_full.yml | 41 +++++++++---- .github/workflows/sonar-pr.yaml | 61 +++++++++++++++++++ MANIFEST.in | 2 +- ...oud.properties => sonar-project.properties | 5 ++ 4 files changed, 95 insertions(+), 14 deletions(-) create mode 100644 .github/workflows/sonar-pr.yaml rename .sonarcloud.properties => sonar-project.properties (56%) diff --git a/.github/workflows/ci_full.yml b/.github/workflows/ci_full.yml index b882fc423b..e92bb29dae 100644 --- a/.github/workflows/ci_full.yml +++ b/.github/workflows/ci_full.yml @@ -1,6 +1,10 @@ --- name: galaxy_ng/ci -on: {pull_request: {branches: ['**']}, push: {branches: ['**']}} +on: + pull_request: + branches: ['**'] + push: + branches: ['**'] jobs: @@ -73,18 +77,29 @@ jobs: - name: run the unit test playbook run: cd dev/playbooks; ANSIBLE_STDOUT_CALLBACK=yaml ansible-playbook -i 'localhost,' --forks=1 -v run_unit_tests.yaml + - name: copy coverage report + run: | + docker cp pulp:/tmp/galaxy_ng-test-results.xml coverage.xml + + - name: upload coverage as artifact + uses: actions/upload-artifact@v4 + with: + name: coverage + path: coverage.xml + + - name: SonarCloud Scan + uses: SonarSource/sonarcloud-github-action@master + if: github.event_name == 'push' && github.repository == 'ansible/galaxy_ng' && github.ref_name == 'master' + env: + SONAR_TOKEN: ${{ secrets.CICD_ORG_SONAR_TOKEN_CICD_BOT }} + - name: upload jUnit XML test results if: github.event_name == 'push' && github.repository == 'ansible/galaxy_ng' && github.ref_name == 'master' continue-on-error: true - run: >- - docker exec pulp /bin/bash -c 'curl -v --user "${{ vars.PDE_ORG_RESULTS_AGGREGATOR_UPLOAD_USER }}:${{ secrets.PDE_ORG_RESULTS_UPLOAD_PASSWORD }}" - --form "xunit_xml=@/tmp/galaxy_ng-test-results.xml" - --form "component_name=hub" - --form "git_commit_sha=${{ github.sha }}" - --form "git_repository_url=https://github.com/${{ github.repository }}" - "${{ vars.PDE_ORG_RESULTS_AGGREGATOR_UPLOAD_URL }}/api/results/upload/"' - - - # FIXME: do we really care about these anymore ... ? - #- name: run the functional test playbook - # run: cd dev/playbooks; ANSIBLE_STDOUT_CALLBACK=yaml ansible-playbook -i 'localhost,' --forks=1 -v run_functional_tests.yaml + run: | + curl -v --user "${{ vars.PDE_ORG_RESULTS_AGGREGATOR_UPLOAD_USER }}:${{ secrets.PDE_ORG_RESULTS_UPLOAD_PASSWORD }}" \ + --form "xunit_xml=@coverage.xml" \ + --form "component_name=hub" \ + --form "git_commit_sha=${{ github.sha }}" \ + --form "git_repository_url=https://github.com/${{ github.repository }}" \ + "${{ vars.PDE_ORG_RESULTS_AGGREGATOR_UPLOAD_URL }}/api/results/upload/" diff --git a/.github/workflows/sonar-pr.yaml b/.github/workflows/sonar-pr.yaml new file mode 100644 index 0000000000..67e51985d4 --- /dev/null +++ b/.github/workflows/sonar-pr.yaml @@ -0,0 +1,61 @@ +# With much help from: +# https://community.sonarsource.com/t/how-to-use-sonarcloud-with-a-forked-repository-on-github/7363/30 +# https://community.sonarsource.com/t/how-to-use-sonarcloud-with-a-forked-repository-on-github/7363/32 +name: SonarCloud +on: + workflow_run: + workflows: + - galaxy_ng/ci + types: + - completed +jobs: + sonar: + name: Upload to SonarCloud + runs-on: ubuntu-latest + if: github.event.workflow_run.conclusion == 'success' && github.event.workflow_run.event == 'pull_request' + steps: + - uses: actions/checkout@v4 + with: + show-progress: false + + - uses: actions/download-artifact@v4 + with: + name: coverage + github-token: ${{ secrets.GITHUB_TOKEN }} + run-id: ${{ github.event.workflow_run.id }} + + - name: Extract PR number from coverage.xml + run: | + echo "PR_NUMBER=$(grep -m 1 '