Skip to content

Sonar

Sonar #1207

Workflow file for this run

name: Sonar
'on':
push:
branches:
- "**"
pull_request_target:
branches:
- "**"
types: [opened, synchronize, reopened, labeled]
schedule:
- cron: 0 16 * * *
workflow_dispatch:
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
with:
fetch-depth: 0
- name: Check for external PR
if: ${{ !(contains(github.event.pull_request.labels.*.name, 'safe') ||
github.event.pull_request.head.repo.full_name == github.repository ||
github.event_name != 'pull_request_target') }}
run: echo "Unsecure PR, must be labelled with the 'safe' label, then run the workflow again" && exit 1
- name: Use Node.js 13
uses: actions/setup-node@v1
with:
node-version: 13
- name: Build with npm
run: |
npm ci
npm run build --if-present
npm test
npm run coverage
- name: SonarCloud
uses: sonarsource/sonarcloud-github-action@master
env:
GITHUB_TOKEN: '${{ secrets.GITHUB_TOKEN }}'
SONAR_TOKEN: '${{ secrets.SONAR_TOKEN }}'
with:
args: >
-Dsonar.organization=mastercard
-Dsonar.projectName=oauth1-signer-nodejs
-Dsonar.projectKey=Mastercard_oauth1-signer-nodejs
-Dsonar.sources=./src -Dsonar.tests=./test
-Dsonar.coverage.jacoco.xmlReportPaths=test-results.xml
-Dsonar.javascript.lcov.reportPaths=.nyc_output/coverage.lcov
-Dsonar.host.url=https://sonarcloud.io -Dsonar.login=${{
secrets.SONAR_TOKEN }}