aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMatthew Watkins <mwatkins@linuxfoundation.org>2024-07-03 15:05:30 +0100
committerMatthew Watkins <mwatkins@linuxfoundation.org>2024-07-12 10:01:36 +0100
commit8fbbe37d022f4e59b2bdbb20b4b3901e93fed3c7 (patch)
tree8ebf7e222f4f9e65f7d8a0b525adfd96f35060f2
parent406e79db568eb870553b5c7924739339f225d4ae (diff)
Feat: Add Sonarcloud workflow for portal-ng/ui scanning
Issue-ID: SECCOM-276 Change-Id: Ieeffa5528212ac44e435729020fb7ca445ef8430 Signed-off-by: Matthew Watkins <mwatkins@linuxfoundation.org>
-rw-r--r--.github/workflows/gerrit-merge.yaml111
1 files changed, 111 insertions, 0 deletions
diff --git a/.github/workflows/gerrit-merge.yaml b/.github/workflows/gerrit-merge.yaml
new file mode 100644
index 0000000..3f73fe7
--- /dev/null
+++ b/.github/workflows/gerrit-merge.yaml
@@ -0,0 +1,111 @@
+---
+name: Gerrit Merge
+
+# yamllint disable-line rule:truthy
+on:
+ workflow_dispatch:
+ inputs:
+ GERRIT_BRANCH:
+ description: "Branch that change is against"
+ required: true
+ type: string
+ GERRIT_CHANGE_ID:
+ description: "The ID for the change"
+ required: true
+ type: string
+ GERRIT_CHANGE_NUMBER:
+ description: "The Gerrit number"
+ required: true
+ type: string
+ GERRIT_CHANGE_URL:
+ description: "URL to the change"
+ required: true
+ type: string
+ GERRIT_EVENT_TYPE:
+ description: "Type of Gerrit event"
+ required: true
+ type: string
+ GERRIT_PATCHSET_NUMBER:
+ description: "The patch number for the change"
+ required: true
+ type: string
+ GERRIT_PATCHSET_REVISION:
+ description: "The revision sha"
+ required: true
+ type: string
+ GERRIT_PROJECT:
+ description: "Project in Gerrit"
+ required: true
+ type: string
+ GERRIT_REFSPEC:
+ description: "Gerrit refspec of change"
+ required: true
+ type: string
+
+concurrency:
+ # yamllint disable-line rule:line-length
+ group: gerrit-merge-${{ github.workflow }}-${{ github.event.inputs.GERRIT_CHANGE_ID || github.run_id }}
+ cancel-in-progress: true
+
+jobs:
+ notify:
+ runs-on: ubuntu-latest
+ steps:
+ - name: Notify job start
+ # yamllint disable-line rule:line-length
+ uses: lfit/gerrit-review-action@9627b9a144f2a2cad70707ddfae87c87dce60729 # v0.8
+ with:
+ host: ${{ vars.GERRIT_SERVER }}
+ username: ${{ vars.GERRIT_SSH_USER }}
+ key: ${{ secrets.GERRIT_SSH_PRIVKEY }}
+ known_hosts: ${{ vars.GERRIT_KNOWN_HOSTS }}
+ gerrit-change-number: ${{ inputs.GERRIT_CHANGE_NUMBER }}
+ gerrit-patchset-number: ${{ inputs.GERRIT_PATCHSET_NUMBER }}
+ vote-type: clear
+ - name: Allow replication
+ run: sleep 10s
+
+ call-prescan-sonarcloud:
+ needs: notify
+ # yamllint disable-line rule:line-length
+ uses: lfit/releng-reusable-workflows/.github/workflows/composed-generic-sonar-cloud.yaml@main
+ with:
+ GERRIT_BRANCH: ${{ inputs.GERRIT_BRANCH }}
+ GERRIT_CHANGE_ID: ${{ inputs.GERRIT_CHANGE_ID }}
+ GERRIT_CHANGE_NUMBER: ${{ inputs.GERRIT_CHANGE_NUMBER }}
+ GERRIT_CHANGE_URL: ${{ inputs.GERRIT_CHANGE_URL }}
+ GERRIT_EVENT_TYPE: ${{ inputs.GERRIT_EVENT_TYPE }}
+ GERRIT_PATCHSET_NUMBER: ${{ inputs.GERRIT_PATCHSET_NUMBER }}
+ GERRIT_PATCHSET_REVISION: ${{ inputs.GERRIT_PATCHSET_REVISION }}
+ GERRIT_PROJECT: ${{ inputs.GERRIT_PROJECT }}
+ GERRIT_REFSPEC: ${{ inputs.GERRIT_REFSPEC }}
+ JDK_VERSION: "17"
+ SONAR_ARGS: >
+ -Dsonar.organization=onap
+ -Dsonar.projectKey=onap_portal-ng-ui
+ -Dsonar.projectName=portal-ng-ui
+ -Dsonar.build.sourceEncoding=UTF-8
+ -Dsonar.sources=.
+ -Dsonar.go.coverage.reportPaths=**/coverage.txt
+ -Dsonar.verbose=true
+ secrets:
+ SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+
+ report-status:
+ if: ${{ always() }}
+ needs: [notify, call-prescan-sonarcloud]
+ runs-on: ubuntu-latest
+ steps:
+ - name: Get workflow conclusion
+ uses: technote-space/workflow-conclusion-action@v3
+ - name: Report workflow conclusion
+ # yamllint disable-line rule:line-length
+ uses: lfit/gerrit-review-action@9627b9a144f2a2cad70707ddfae87c87dce60729 # v0.8
+ with:
+ host: ${{ vars.GERRIT_SERVER }}
+ username: ${{ vars.GERRIT_SSH_USER }}
+ key: ${{ secrets.GERRIT_SSH_PRIVKEY }}
+ known_hosts: ${{ vars.GERRIT_KNOWN_HOSTS }}
+ gerrit-change-number: ${{ inputs.GERRIT_CHANGE_NUMBER }}
+ gerrit-patchset-number: ${{ inputs.GERRIT_PATCHSET_NUMBER }}
+ vote-type: ${{ env.WORKFLOW_CONCLUSION }}