This is an automated email from the ASF dual-hosted git repository.
yangzhg pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/incubator-doris.git
The following commit(s) were added to refs/heads/master by this push:
new b6b6e17eb7 [chore] (workflow)add sonarcloud workflow to check code
quality and security (#9252)
b6b6e17eb7 is described below
commit b6b6e17eb7fed8aa0d434b4374955ec2b8474b28
Author: Zhengguo Yang <yangz...@gmail.com>
AuthorDate: Thu Apr 28 11:09:56 2022 +0800
[chore] (workflow)add sonarcloud workflow to check code quality and
security (#9252)
---
.github/workflows/sonarcloud.yml | 92 ++++++++++++++++++++++++++++++++++++++++
fe/pom.xml | 13 +++++-
2 files changed, 104 insertions(+), 1 deletion(-)
diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml
new file mode 100644
index 0000000000..4573af8925
--- /dev/null
+++ b/.github/workflows/sonarcloud.yml
@@ -0,0 +1,92 @@
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements. See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership. The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+# KIND, either express or implied. See the License for the
+# specific language governing permissions and limitations
+# under the License.
+#
+---
+name: Code Quality Analysis
+on:
+ push:
+ branches:
+ - master
+ pull_request:
+ types: [opened, synchronize, reopened]
+jobs:
+ build:
+ name: Build
+ runs-on: ubuntu-latest
+ env:
+ SONAR_SCANNER_VERSION: 4.7.0.2747
+ SONAR_SERVER_URL: "https://sonarcloud.io";
+ BUILD_WRAPPER_OUT_DIR: build_wrapper_output_directory # Directory where
build-wrapper output will be placed
+ steps:
+ - uses: actions/checkout@v2
+ with:
+ fetch-depth: 0 # Shallow clones should be disabled for a better
relevancy of analysis
+ - name: Set up JDK 11
+ uses: actions/setup-java@v1
+ with:
+ java-version: 11
+ - name: Cache SonarCloud packages
+ uses: actions/cache@v1
+ with:
+ path: ~/.sonar/cache
+ key: ${{ runner.os }}-sonar
+ restore-keys: ${{ runner.os }}-sonar
+ - name: Cache Maven packages
+ uses: actions/cache@v1
+ with:
+ path: ~/.m2
+ key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }}
+ restore-keys: ${{ runner.os }}-m2
+ - name: Setup thrift
+ run: |
+ sudo apt-get update
+ sudo DEBIAN_FRONTEND=noninteractive apt-get install -y
thrift-compiler=0.13.0-2build2
+ thrift --version
+ mkdir -p thirdparty/installed/bin/
+ cd thirdparty/installed/bin/ && ln -s /usr/bin/thrift thrift
+ - name: Analyze FE
+ env:
+ GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR
information, if any
+ SONAR_TOKEN: ${{ secrets.SONARCLOUD_TOKEN }}
+ run: |
+ cd fe
+ mvn -B verify org.sonarsource.scanner.maven:sonar-maven-plugin:sonar
-Dsonar.projectKey=apache_incubator-doris -DskipTests
+# scanner be
+# - name: Download and set up sonar-scanner
+# env:
+# SONAR_SCANNER_DOWNLOAD_URL:
https://binaries.sonarsource.com/Distribution/sonar-scanner-cli/sonar-scanner-cli-${{
env.SONAR_SCANNER_VERSION }}-linux.zip
+# run: |
+# mkdir -p $HOME/.sonar
+# curl -sSLo $HOME/.sonar/sonar-scanner.zip ${{
env.SONAR_SCANNER_DOWNLOAD_URL }}
+# unzip -o $HOME/.sonar/sonar-scanner.zip -d $HOME/.sonar/
+# echo "$HOME/.sonar/sonar-scanner-${{ env.SONAR_SCANNER_VERSION
}}-linux/bin" >> $GITHUB_PATH
+# - name: Download and set up build-wrapper
+# env:
+# BUILD_WRAPPER_DOWNLOAD_URL: ${{ env.SONAR_SERVER_URL
}}/static/cpp/build-wrapper-linux-x86.zip
+# run: |
+# curl -sSLo $HOME/.sonar/build-wrapper-linux-x86.zip ${{
env.BUILD_WRAPPER_DOWNLOAD_URL }}
+# unzip -o $HOME/.sonar/build-wrapper-linux-x86.zip -d $HOME/.sonar/
+# echo "$HOME/.sonar/build-wrapper-linux-x86" >> $GITHUB_PATH
+# - name: Run build-wrapper
+# run: |
+# build-wrapper-linux-x86-64 --out-dir ${{ env.BUILD_WRAPPER_OUT_DIR
}}<insert_your_clean_build_command>
+# - name: Analyze BE
+# env:
+# GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+# SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+# run: |
+# sonar-scanner --define sonar.host.url="${{ env.SONAR_SERVER_URL
}}" --define sonar.cfamily.build-wrapper-output="${{ env.BUILD_WRAPPER_OUT_DIR
}}"
diff --git a/fe/pom.xml b/fe/pom.xml
index 3ebe034b25..f5b610029c 100644
--- a/fe/pom.xml
+++ b/fe/pom.xml
@@ -110,6 +110,11 @@ under the License.
</execution>
</executions>
</plugin>
+ <plugin>
+ <groupId>org.sonarsource.scanner.maven</groupId>
+ <artifactId>sonar-maven-plugin</artifactId>
+ <version>3.9.1.2184</version>
+ </plugin>
</plugins>
</pluginManagement>
</build>
@@ -125,7 +130,9 @@ under the License.
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<maven.compiler.source>1.8</maven.compiler.source>
<maven.compiler.target>1.8</maven.compiler.target>
-
+ <sonar.organization>apache</sonar.organization>
+ <sonar.host.url>https://sonarcloud.io</sonar.host.url>
+
<cglib.version>2.2</cglib.version>
<commons-cli.version>1.4</commons-cli.version>
<commons-codec.version>1.9</commons-codec.version>
@@ -243,6 +250,10 @@ under the License.
</repository>
</repositories>
<pluginRepositories>
+ <pluginRepository>
+ <id>central</id>
+ <url>https://repo.maven.apache.org/maven2</url>
+ </pluginRepository>
<!-- for cup-maven-plugin -->
<pluginRepository>
<id>cloudera-public</id>
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscr...@doris.apache.org
For additional commands, e-mail: commits-h...@doris.apache.org
