AYS-573 | SonarQube Integration (#86)

afet-yonetim-sistemi · Dec 22, 2024 · cb6d475 · cb6d475
1 parent 87f9065
commit cb6d475
Show file tree

Hide file tree

Showing 3 changed files with 27 additions and 0 deletions.
diff --git a/.github/workflows/application-health-checker.yml b/.github/workflows/application-health-checker.yml
@@ -17,6 +17,8 @@ jobs:
 
       - name: Checkout code # Step to check out the code from the repository
         uses: actions/checkout@v3
+        with:
+          fetch-depth: 0  # Shallow clones should be disabled for a better relevancy of analysis
 
       - uses: actions/setup-node@v4 # Step to set up Node.js
         with:
@@ -27,3 +29,14 @@ jobs:
 
       - name: Build Project # Build with npm
         run: npm run build
+
+      - uses: sonarsource/sonarqube-scan-action@v3
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
+      # If you wish to fail your job when the Quality Gate is red, uncomment the
+      # following lines. This would typically be used to fail a deployment.
+      # - uses: sonarsource/sonarqube-quality-gate-action@master
+      #   timeout-minutes: 5
+      #   env:
+      #     SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
diff --git a/.github/workflows/pull-request-checker.yml b/.github/workflows/pull-request-checker.yml
@@ -23,6 +23,8 @@ jobs:
 
       - name: Checkout code # Step to check out the code from the repository
         uses: actions/checkout@v3
+        with:
+          fetch-depth: 0  # Shallow clones should be disabled for a better relevancy of analysis
 
       - uses: actions/setup-node@v4 # Step to set up Node.js
         with:
@@ -33,3 +35,14 @@ jobs:
 
       - name: Build Project # Build with npm
         run: npm run build
+
+      - uses: sonarsource/sonarqube-scan-action@v3
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
+      # If you wish to fail your job when the Quality Gate is red, uncomment the
+      # following lines. This would typically be used to fail a deployment.
+      # - uses: sonarsource/sonarqube-quality-gate-action@master
+      #   timeout-minutes: 5
+      #   env:
+      #     SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
diff --git a/sonar-project.properties b/sonar-project.properties
@@ -0,0 +1 @@
+sonar.projectKey=afet-yonetim-sistemi_ays-fe-landing_e8ebf23a-49c9-4f08-adb8-c6159a1cf6ea
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		sonar.projectKey=afet-yonetim-sistemi_ays-fe-landing_e8ebf23a-49c9-4f08-adb8-c6159a1cf6ea