aswf-docker/.github/workflows/python-sonar.yml at main · AcademySoftwareFoundation/aswf-docker · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
name: Test Python aswfdocker Library - Sonar

on:
  push:
    branches:
      - main

jobs:
  sonar:
    runs-on: ubuntu-latest

    steps:
    - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
      with:
        # Disabling shallow clones is recommended for improving the relevancy of reporting
        fetch-depth: 0
    - name: Set up Python
      uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
      with:
        python-version: "3.9"

    - name: Install uv
      uses: astral-sh/setup-uv@e06108dd0aef18192324c70427afc47652e63a82 # v7.5.0
      with:
        enable-cache: auto

    - name: Install aswfdocker and dev dependencies
      run: uv sync --all-extras

    # mypy static type checks with junit XML report
    - name: Run mypy
      run: uv run mypy python/aswfdocker --junit-xml=test-mypy-results.xml

    # python unittests with junit XML report, PyLint and coverage XML Cobertura report for publishing task
    - name: Run pylint linter
      run: uv run pytest python/aswfdocker --doctest-modules --pylint --junitxml=test-pylint-results.xml --cov=. --cov-report=xml

    - name: Install and Run Sonar Scanner
      uses: SonarSource/sonarqube-scan-action@a31c9398be7ace6bbfaf30c0bd5d415f843d45e9 # v7.0.0
      env:
        SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}