Skip to content

Enable Static Analysis in matter_sdk usings jenkins manual trigger #654

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 8 commits into
base: main
Choose a base branch
from
Draft

Enable Static Analysis in matter_sdk usings jenkins manual trigger #654

wants to merge 8 commits into from
+632 −0

Conversation

@sabollim-silabs
Copy link
Contributor

@sabollim-silabs sabollim-silabs commented Sep 30, 2025
edited
Loading

This pull request introduces a robust integration between Jenkins, SonarQube, and GitHub to automate static analysis reporting for pull requests. The main changes include a new Jenkins pipeline stage for SonarQube analysis, Groovy functions for orchestrating analysis and posting results, and a Python script that posts detailed SonarQube results and metrics as a formatted comment on the relevant GitHub PR.

Jenkins Pipeline & Orchestration

  • Added a new Jenkins pipeline definition in Jenkinsfile that runs SonarQube static analysis in a Docker container, extracts results, and posts them to GitHub PRs using a Groovy function and Python script.
  • Implemented publishSonarAnalysis and send_sonar_results_to_github functions in jenkinsFunctions.groovy to handle SonarQube scanning, result extraction, credential management, and invocation of the Python posting script.

GitHub PR Comment Automation

  • Added a new script github/send_sonar_results_to_github.py that:
    • Fetches SonarQube quality gate status and key metrics via API.
    • Formats a comprehensive PR comment with status, metrics, ratings, and analysis output.
    • Posts the comment to the relevant GitHub PR using the GitHub API.

SonarQube Metrics & Reporting

  • The Python script fetches and displays detailed SonarQube metrics (bugs, vulnerabilities, code smells, coverage, ratings, etc.) and quality gate status, providing clear visibility into the static analysis results for each PR.

Security & Reliability Improvements

  • Credentials for GitHub and SonarQube are securely managed via Jenkins credentials and environment variables, with error handling and cleanup of temporary files to ensure reliability and security.

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch 3 times, most recently from 34d60ba to 5dd8c42 Compare September 30, 2025 10:48
@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from 5dd8c42 to 75c892a Compare September 30, 2025 11:22
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Sep 30, 2025

🔍 SonarQube Static Analysis Results

Result:PASSED
Quality Gate Status: PASSED
Commit SHA: 75c892aea1de5b2024e2e9e5a2e5662a1171f212

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-09-30 11:52:07 UTC

📋 Detailed Results

Click to view SonarQube output 
[Output truncated - showing last 2000 characters]

...d/darwin-framework-tool/zap-generated/cluster/Commands.h for block at line 887. Keep only the first 100 references.
11:51:45.022 WARN  Too many duplication references on file zzz_generated/darwin-framework-tool/zap-generated/cluster/Commands.h for block at line 723. Keep only the first 100 references.
11:51:45.022 WARN  Too many duplication references on file zzz_generated/darwin-framework-tool/zap-generated/cluster/Commands.h for block at line 805. Keep only the first 100 references.
11:51:45.022 WARN  Too many duplication references on file zzz_generated/darwin-framework-tool/zap-generated/cluster/Commands.h for block at line 641. Keep only the first 100 references.
11:51:45.686 WARN  Too many duplication groups on file zzz_generated/app-common/app-common/zap-generated/attributes/Accessors.cpp. Keep only the first 100 groups.
11:51:45.724 INFO  CPD Executor CPD calculation finished (done) | time=2411ms
11:51:45.728 INFO  SCM revision ID '75c892aea1de5b2024e2e9e5a2e5662a1171f212'
11:51:46.038 INFO  SCM writing changed lines
11:51:46.066 INFO  Merge base sha1: af773a0f108c4865a24d1b48e059172db295da28
11:51:46.067 INFO  SCM writing changed lines (done) | time=28ms
11:51:46.344 INFO  Analysis report generated in 343ms, dir size=16.2 MB
11:51:52.567 INFO  Analysis report compressed in 6223ms, zip size=10.1 MB
11:51:53.504 INFO  Analysis report uploaded in 937ms
11:51:53.505 INFO  ------------- Check Quality Gate status
11:51:53.506 INFO  Waiting for the analysis report to be processed (max 300s)
11:52:03.590 INFO  QUALITY GATE STATUS: PASSED - View details on https://sonarqube.silabs.net/dashboard?id=matter_sdk&pullRequest=654
11:52:03.593 INFO  Executing post-job 'Final report'
11:52:03.594 INFO  Turn debug info on to get more details (sonar-scanner -X -Dsonar.verbose=true ...).
11:52:04.240 INFO  Analysis total time: 26:06.822 s
11:52:04.241 INFO  SonarScanner Engine completed successfully
11:52:04.706 INFO  EXECUTION SUCCESS
11:52:04.707 INFO  Total time: 26:12.456s

🤖 Automated comment by Jenkins CI

@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Sep 30, 2025

🔍 SonarQube Static Analysis Results

Result:FAILED
Quality Gate Status: FAILED
Commit SHA: 0e89186166fd2a0a3d6c529e339a824b88522d5d

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-09-30 11:56:53 UTC

📋 Detailed Results

Click to view SonarQube output 
SonarQube analysis failed: script returned exit code 3

🤖 Automated comment by Jenkins CI

@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Sep 30, 2025

🔍 SonarQube Static Analysis Results

Result:FAILED
Quality Gate Status: FAILED
Commit SHA: 0e89186166fd2a0a3d6c529e339a824b88522d5d

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-09-30 12:00:41 UTC

📋 Detailed Results

Click to view SonarQube output 
SonarQube analysis failed: script returned exit code 3

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from 0e89186 to 7e01dc0 Compare September 30, 2025 12:01
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Sep 30, 2025

🔍 SonarQube Static Analysis Results

Result:FAILED
Quality Gate Status: FAILED
Commit SHA: 7e01dc0ce5d644e9f39982ba6821d68bba9c95fb

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-09-30 12:03:22 UTC

📋 Detailed Results

Click to view SonarQube output 
SonarQube analysis failed: script returned exit code 3

🤖 Automated comment by Jenkins CI

@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Sep 30, 2025

🔍 SonarQube Static Analysis Results

Result:PASSED
Quality Gate Status: PASSED
Commit SHA: 7e01dc0ce5d644e9f39982ba6821d68bba9c95fb

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-09-30 12:05:54 UTC

📋 Detailed Results

Click to view SonarQube output 
[Output truncated - showing last 2000 characters]

...ndency-Check HTML report does not exists. Please check property sonar.dependencyCheck.htmlReportPath:/home/buildengineer/jenkins-worker/workspace/Matter_SDK_PR-654/${WORKSPACE}/dependency-check-report.html
12:05:46.718 INFO  HTML-Dependency-Check report does not exist.
12:05:46.718 INFO  Dependency-Check - End
12:05:46.718 INFO  Sensor Dependency-Check [dependencycheck] (done) | time=1ms
12:05:46.718 INFO  Sensor Zero Coverage Sensor
12:05:46.727 INFO  Sensor Zero Coverage Sensor (done) | time=9ms
12:05:46.729 INFO  SCM Publisher SCM provider for this project is: git
12:05:46.729 INFO  SCM Publisher 1 source file to be analyzed
12:05:46.874 INFO  SCM Publisher 1/1 source file have been analyzed (done) | time=144ms
12:05:46.880 INFO  CPD Executor 2 files had no CPD blocks
12:05:46.880 INFO  CPD Executor Calculating CPD for 14 files
12:05:46.900 INFO  CPD Executor CPD calculation finished (done) | time=19ms
12:05:46.903 INFO  SCM revision ID '7e01dc0ce5d644e9f39982ba6821d68bba9c95fb'
12:05:46.991 INFO  SCM writing changed lines
12:05:47.007 INFO  Merge base sha1: af773a0f108c4865a24d1b48e059172db295da28
12:05:47.045 INFO  SCM writing changed lines (done) | time=54ms
12:05:47.053 INFO  Analysis report generated in 146ms, dir size=369.4 kB
12:05:47.084 INFO  Analysis report compressed in 31ms, zip size=71.1 kB
12:05:47.132 INFO  Analysis report uploaded in 48ms
12:05:47.133 INFO  ------------- Check Quality Gate status
12:05:47.133 INFO  Waiting for the analysis report to be processed (max 300s)
12:05:52.196 INFO  QUALITY GATE STATUS: PASSED - View details on https://sonarqube.silabs.net/dashboard?id=github_matter_sdk&pullRequest=654
12:05:52.199 INFO  Executing post-job 'Final report'
12:05:52.200 INFO  Turn debug info on to get more details (sonar-scanner -X -Dsonar.verbose=true ...).
12:05:52.223 INFO  Analysis total time: 30.656 s
12:05:52.224 INFO  SonarScanner Engine completed successfully
12:05:52.253 INFO  EXECUTION SUCCESS
12:05:52.254 INFO  Total time: 33.243s

🤖 Automated comment by Jenkins CI

@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Oct 6, 2025

🔍 SonarQube Static Analysis Results

Result:PASSED
Quality Gate Status: PASSED
Commit SHA: 87e297a8008f36bb0ccfdd0d3344626a06ab11d9

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-10-06 08:42:41 UTC

� Key Metrics

Metric Value
Lines of Code (NCLOC) N/A
Duplicated Lines N/A
New Violations N/A
New Code Smells N/A
New Bugs N/A
New Vulnerabilities N/A
New Security Hotspots N/A

🏆 Quality Ratings

Category Rating
New Maintainability Rating N/A
Reliability Rating N/A
New Security Rating N/A
Quality Gate Details N/A

�📋 Detailed Results

Click to view SonarQube output 
[Output truncated - showing last 2000 characters]

...endency-Check HTML report does not exists. Please check property sonar.dependencyCheck.htmlReportPath:/home/buildengineer/jenkins-worker/workspace/Matter_SDK_PR-654/${WORKSPACE}/dependency-check-report.html
08:42:33.298 INFO  HTML-Dependency-Check report does not exist.
08:42:33.298 INFO  Dependency-Check - End
08:42:33.298 INFO  Sensor Dependency-Check [dependencycheck] (done) | time=2ms
08:42:33.298 INFO  Sensor Zero Coverage Sensor
08:42:33.307 INFO  Sensor Zero Coverage Sensor (done) | time=9ms
08:42:33.308 INFO  SCM Publisher SCM provider for this project is: git
08:42:33.309 INFO  SCM Publisher 1 source file to be analyzed
08:42:33.439 INFO  SCM Publisher 1/1 source file have been analyzed (done) | time=129ms
08:42:33.444 INFO  CPD Executor 2 files had no CPD blocks
08:42:33.444 INFO  CPD Executor Calculating CPD for 14 files
08:42:33.461 INFO  CPD Executor CPD calculation finished (done) | time=17ms
08:42:33.464 INFO  SCM revision ID '87e297a8008f36bb0ccfdd0d3344626a06ab11d9'
08:42:33.514 INFO  SCM writing changed lines
08:42:33.532 INFO  Merge base sha1: 724a0aa32aadff08529c8a621d081305f4d0b6ee
08:42:33.560 INFO  SCM writing changed lines (done) | time=46ms
08:42:33.564 INFO  Analysis report generated in 99ms, dir size=369.4 kB
08:42:33.587 INFO  Analysis report compressed in 22ms, zip size=71.1 kB
08:42:33.637 INFO  Analysis report uploaded in 50ms
08:42:33.638 INFO  ------------- Check Quality Gate status
08:42:33.638 INFO  Waiting for the analysis report to be processed (max 300s)
08:42:38.708 INFO  QUALITY GATE STATUS: PASSED - View details on https://sonarqube.silabs.net/dashboard?id=github_matter_sdk&pullRequest=654
08:42:38.711 INFO  Executing post-job 'Final report'
08:42:38.713 INFO  Turn debug info on to get more details (sonar-scanner -X -Dsonar.verbose=true ...).
08:42:38.734 INFO  Analysis total time: 30.011 s
08:42:38.735 INFO  SonarScanner Engine completed successfully
08:42:38.761 INFO  EXECUTION SUCCESS
08:42:38.762 INFO  Total time: 34.908s

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from 87e297a to e11adda Compare October 6, 2025 08:48
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Oct 6, 2025

🔍 SonarQube Static Analysis Results

Result:PASSED
Quality Gate Status: PASSED
Commit SHA: e11adda69970de38a703418f0bbb370f3d553e19

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-10-06 08:52:00 UTC

� Key Metrics

Metric Value
Lines of Code (NCLOC) N/A
Duplicated Lines N/A
New Violations N/A
New Code Smells N/A
New Bugs N/A
New Vulnerabilities N/A
New Security Hotspots N/A

🏆 Quality Ratings

Category Rating
New Maintainability Rating N/A
Reliability Rating N/A
New Security Rating N/A
Quality Gate Details N/A

�📋 Detailed Results

Click to view SonarQube output 
[Output truncated - showing last 2000 characters]

...ndency-Check HTML report does not exists. Please check property sonar.dependencyCheck.htmlReportPath:/home/buildengineer/jenkins-worker/workspace/Matter_SDK_PR-654/${WORKSPACE}/dependency-check-report.html
08:51:52.555 INFO  HTML-Dependency-Check report does not exist.
08:51:52.556 INFO  Dependency-Check - End
08:51:52.556 INFO  Sensor Dependency-Check [dependencycheck] (done) | time=1ms
08:51:52.556 INFO  Sensor Zero Coverage Sensor
08:51:52.564 INFO  Sensor Zero Coverage Sensor (done) | time=9ms
08:51:52.565 INFO  SCM Publisher SCM provider for this project is: git
08:51:52.566 INFO  SCM Publisher 1 source file to be analyzed
08:51:52.697 INFO  SCM Publisher 1/1 source file have been analyzed (done) | time=131ms
08:51:52.704 INFO  CPD Executor 2 files had no CPD blocks
08:51:52.704 INFO  CPD Executor Calculating CPD for 14 files
08:51:52.721 INFO  CPD Executor CPD calculation finished (done) | time=17ms
08:51:52.725 INFO  SCM revision ID 'e11adda69970de38a703418f0bbb370f3d553e19'
08:51:52.792 INFO  SCM writing changed lines
08:51:52.809 INFO  Merge base sha1: 724a0aa32aadff08529c8a621d081305f4d0b6ee
08:51:52.836 INFO  SCM writing changed lines (done) | time=44ms
08:51:52.841 INFO  Analysis report generated in 115ms, dir size=369.4 kB
08:51:52.864 INFO  Analysis report compressed in 23ms, zip size=71.1 kB
08:51:52.910 INFO  Analysis report uploaded in 46ms
08:51:52.911 INFO  ------------- Check Quality Gate status
08:51:52.911 INFO  Waiting for the analysis report to be processed (max 300s)
08:51:57.975 INFO  QUALITY GATE STATUS: PASSED - View details on https://sonarqube.silabs.net/dashboard?id=github_matter_sdk&pullRequest=654
08:51:57.979 INFO  Executing post-job 'Final report'
08:51:57.981 INFO  Turn debug info on to get more details (sonar-scanner -X -Dsonar.verbose=true ...).
08:51:58.003 INFO  Analysis total time: 30.294 s
08:51:58.004 INFO  SonarScanner Engine completed successfully
08:51:58.029 INFO  EXECUTION SUCCESS
08:51:58.030 INFO  Total time: 35.244s

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from e11adda to 8ff3bf4 Compare October 6, 2025 08:54
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Oct 6, 2025

🔍 SonarQube Static Analysis Results

Result:PASSED
Quality Gate Status: PASSED
Commit SHA: 8ff3bf4ec93fa958ac47d8cf9383b5165ad264b8

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-10-06 08:55:42 UTC

� Key Metrics

Metric Value
Lines of Code (NCLOC) N/A
Duplicated Lines N/A
New Violations N/A
New Code Smells N/A
New Bugs N/A
New Vulnerabilities N/A
New Security Hotspots N/A

🏆 Quality Ratings

Category Rating
New Maintainability Rating N/A
Reliability Rating N/A
New Security Rating N/A
Quality Gate Details N/A

�📋 Detailed Results

Click to view SonarQube output 
[Output truncated - showing last 2000 characters]

...ndency-Check HTML report does not exists. Please check property sonar.dependencyCheck.htmlReportPath:/home/buildengineer/jenkins-worker/workspace/Matter_SDK_PR-654/${WORKSPACE}/dependency-check-report.html
08:55:34.270 INFO  HTML-Dependency-Check report does not exist.
08:55:34.270 INFO  Dependency-Check - End
08:55:34.270 INFO  Sensor Dependency-Check [dependencycheck] (done) | time=2ms
08:55:34.270 INFO  Sensor Zero Coverage Sensor
08:55:34.279 INFO  Sensor Zero Coverage Sensor (done) | time=9ms
08:55:34.280 INFO  SCM Publisher SCM provider for this project is: git
08:55:34.280 INFO  SCM Publisher 1 source file to be analyzed
08:55:34.413 INFO  SCM Publisher 1/1 source file have been analyzed (done) | time=133ms
08:55:34.419 INFO  CPD Executor 2 files had no CPD blocks
08:55:34.419 INFO  CPD Executor Calculating CPD for 14 files
08:55:34.436 INFO  CPD Executor CPD calculation finished (done) | time=17ms
08:55:34.439 INFO  SCM revision ID '8ff3bf4ec93fa958ac47d8cf9383b5165ad264b8'
08:55:34.507 INFO  SCM writing changed lines
08:55:34.519 INFO  Merge base sha1: 724a0aa32aadff08529c8a621d081305f4d0b6ee
08:55:34.544 INFO  SCM writing changed lines (done) | time=38ms
08:55:34.550 INFO  Analysis report generated in 108ms, dir size=369.4 kB
08:55:34.576 INFO  Analysis report compressed in 27ms, zip size=71.1 kB
08:55:34.624 INFO  Analysis report uploaded in 48ms
08:55:34.625 INFO  ------------- Check Quality Gate status
08:55:34.625 INFO  Waiting for the analysis report to be processed (max 300s)
08:55:39.691 INFO  QUALITY GATE STATUS: PASSED - View details on https://sonarqube.silabs.net/dashboard?id=github_matter_sdk&pullRequest=654
08:55:39.694 INFO  Executing post-job 'Final report'
08:55:39.695 INFO  Turn debug info on to get more details (sonar-scanner -X -Dsonar.verbose=true ...).
08:55:39.716 INFO  Analysis total time: 28.800 s
08:55:39.717 INFO  SonarScanner Engine completed successfully
08:55:39.740 INFO  EXECUTION SUCCESS
08:55:39.741 INFO  Total time: 31.229s

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch 7 times, most recently from 7eafe41 to 441f99b Compare October 6, 2025 09:59
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Oct 6, 2025

🔍 SonarQube Static Analysis Results

Result:PASSED
Quality Gate Status: PASSED
Commit SHA: 441f99b252c9abb9bf1910d149312c3e66b8d80a

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-10-06 10:03:43 UTC

� Key Metrics

Metric Value
Lines of Code (NCLOC) 358
Duplicated Lines Density 0%
New Violations 0
New Code Smells 0
New Bugs 0
New Vulnerabilities 0
New Security Hotspots 0

🏆 Quality Ratings

Category Rating
New Maintainability Rating N/A
Reliability Rating N/A
New Security Rating N/A

�📋 Detailed Results

Click to view SonarQube output 
[Output truncated - showing last 2000 characters]

...dency-Check HTML report does not exists. Please check property sonar.dependencyCheck.htmlReportPath:/home/buildengineer/jenkins-worker/workspace/Matter_SDK_PR-654/${WORKSPACE}/dependency-check-report.html
10:03:35.072 INFO  HTML-Dependency-Check report does not exist.
10:03:35.072 INFO  Dependency-Check - End
10:03:35.072 INFO  Sensor Dependency-Check [dependencycheck] (done) | time=2ms
10:03:35.072 INFO  Sensor Zero Coverage Sensor
10:03:35.082 INFO  Sensor Zero Coverage Sensor (done) | time=10ms
10:03:35.083 INFO  SCM Publisher SCM provider for this project is: git
10:03:35.084 INFO  SCM Publisher 1 source file to be analyzed
10:03:35.226 INFO  SCM Publisher 1/1 source file have been analyzed (done) | time=142ms
10:03:35.233 INFO  CPD Executor 2 files had no CPD blocks
10:03:35.233 INFO  CPD Executor Calculating CPD for 14 files
10:03:35.252 INFO  CPD Executor CPD calculation finished (done) | time=19ms
10:03:35.256 INFO  SCM revision ID '441f99b252c9abb9bf1910d149312c3e66b8d80a'
10:03:35.329 INFO  SCM writing changed lines
10:03:35.355 INFO  Merge base sha1: 724a0aa32aadff08529c8a621d081305f4d0b6ee
10:03:35.382 INFO  SCM writing changed lines (done) | time=54ms
10:03:35.387 INFO  Analysis report generated in 130ms, dir size=369.4 kB
10:03:35.410 INFO  Analysis report compressed in 23ms, zip size=71.1 kB
10:03:35.456 INFO  Analysis report uploaded in 46ms
10:03:35.457 INFO  ------------- Check Quality Gate status
10:03:35.457 INFO  Waiting for the analysis report to be processed (max 300s)
10:03:40.529 INFO  QUALITY GATE STATUS: PASSED - View details on https://sonarqube.silabs.net/dashboard?id=github_matter_sdk&pullRequest=654
10:03:40.532 INFO  Executing post-job 'Final report'
10:03:40.533 INFO  Turn debug info on to get more details (sonar-scanner -X -Dsonar.verbose=true ...).
10:03:40.556 INFO  Analysis total time: 31.721 s
10:03:40.557 INFO  SonarScanner Engine completed successfully
10:03:40.583 INFO  EXECUTION SUCCESS
10:03:40.584 INFO  Total time: 37.011s

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from 441f99b to 6978bad Compare October 6, 2025 16:03
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Oct 6, 2025

🔍 SonarQube Static Analysis Results

Result:PASSED
Quality Gate Status: PASSED
Commit SHA: 6978bad66c633f3707442b6cbc0651c976da4cd4

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-10-06 16:05:48 UTC

� Key Metrics

Metric Value
New Lines of Code 0
New Duplicated Lines Density 0%
New Violations 0
New Code Smells 0
New Bugs 0
New Vulnerabilities 0
New Security Hotspots 0

🏆 Quality Ratings

Category Rating
New Maintainability Rating 0
Reliability Rating 1.0
New Security Rating 0

�📋 Detailed Results

Click to view SonarQube output 
[Output truncated - showing last 2000 characters]

...ndency-Check HTML report does not exists. Please check property sonar.dependencyCheck.htmlReportPath:/home/buildengineer/jenkins-worker/workspace/Matter_SDK_PR-654/${WORKSPACE}/dependency-check-report.html
16:05:40.524 INFO  HTML-Dependency-Check report does not exist.
16:05:40.524 INFO  Dependency-Check - End
16:05:40.524 INFO  Sensor Dependency-Check [dependencycheck] (done) | time=2ms
16:05:40.524 INFO  Sensor Zero Coverage Sensor
16:05:40.533 INFO  Sensor Zero Coverage Sensor (done) | time=9ms
16:05:40.534 INFO  SCM Publisher SCM provider for this project is: git
16:05:40.534 INFO  SCM Publisher 1 source file to be analyzed
16:05:40.665 INFO  SCM Publisher 1/1 source file have been analyzed (done) | time=130ms
16:05:40.673 INFO  CPD Executor 2 files had no CPD blocks
16:05:40.673 INFO  CPD Executor Calculating CPD for 14 files
16:05:40.693 INFO  CPD Executor CPD calculation finished (done) | time=20ms
16:05:40.698 INFO  SCM revision ID '6978bad66c633f3707442b6cbc0651c976da4cd4'
16:05:40.761 INFO  SCM writing changed lines
16:05:40.776 INFO  Merge base sha1: bb5e14031ad3657c75f467c3f6fb542241aa84df
16:05:40.806 INFO  SCM writing changed lines (done) | time=45ms
16:05:40.810 INFO  Analysis report generated in 113ms, dir size=369.4 kB
16:05:40.833 INFO  Analysis report compressed in 22ms, zip size=71.1 kB
16:05:40.879 INFO  Analysis report uploaded in 46ms
16:05:40.880 INFO  ------------- Check Quality Gate status
16:05:40.880 INFO  Waiting for the analysis report to be processed (max 300s)
16:05:45.944 INFO  QUALITY GATE STATUS: PASSED - View details on https://sonarqube.silabs.net/dashboard?id=github_matter_sdk&pullRequest=654
16:05:45.947 INFO  Executing post-job 'Final report'
16:05:45.949 INFO  Turn debug info on to get more details (sonar-scanner -X -Dsonar.verbose=true ...).
16:05:45.971 INFO  Analysis total time: 29.889 s
16:05:45.972 INFO  SonarScanner Engine completed successfully
16:05:46.009 INFO  EXECUTION SUCCESS
16:05:46.010 INFO  Total time: 34.884s

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from 6978bad to 972e6b2 Compare October 6, 2025 16:24
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Oct 6, 2025

🔍 SonarQube Static Analysis Results

Result:PASSED
Quality Gate Status: PASSED
Commit SHA: 972e6b231fe4508036a00d9ad27abaffaf0019b6

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-10-06 16:30:49 UTC

� Key Metrics

Metric Value
New Lines of Code 0
New Duplicated Lines Density 0%
New Violations 0
New Code Smells 0
New Bugs 0
New Vulnerabilities 0
New Security Hotspots 0

🏆 Quality Ratings

Category Rating
New Maintainability Rating 0
Reliability Rating 1.0
New Security Rating 0

�📋 Detailed Results

Click to view SonarQube output 
[Output truncated - showing last 2000 characters]

...endency-Check HTML report does not exists. Please check property sonar.dependencyCheck.htmlReportPath:/home/buildengineer/jenkins-worker/workspace/Matter_SDK_PR-654/${WORKSPACE}/dependency-check-report.html
16:30:41.396 INFO  HTML-Dependency-Check report does not exist.
16:30:41.396 INFO  Dependency-Check - End
16:30:41.396 INFO  Sensor Dependency-Check [dependencycheck] (done) | time=1ms
16:30:41.396 INFO  Sensor Zero Coverage Sensor
16:30:41.404 INFO  Sensor Zero Coverage Sensor (done) | time=9ms
16:30:41.405 INFO  SCM Publisher SCM provider for this project is: git
16:30:41.406 INFO  SCM Publisher 1 source file to be analyzed
16:30:41.527 INFO  SCM Publisher 1/1 source file have been analyzed (done) | time=121ms
16:30:41.533 INFO  CPD Executor 2 files had no CPD blocks
16:30:41.533 INFO  CPD Executor Calculating CPD for 14 files
16:30:41.550 INFO  CPD Executor CPD calculation finished (done) | time=17ms
16:30:41.553 INFO  SCM revision ID '972e6b231fe4508036a00d9ad27abaffaf0019b6'
16:30:41.604 INFO  SCM writing changed lines
16:30:41.620 INFO  Merge base sha1: bb5e14031ad3657c75f467c3f6fb542241aa84df
16:30:41.646 INFO  SCM writing changed lines (done) | time=42ms
16:30:41.650 INFO  Analysis report generated in 96ms, dir size=369.4 kB
16:30:41.673 INFO  Analysis report compressed in 22ms, zip size=71.1 kB
16:30:41.726 INFO  Analysis report uploaded in 53ms
16:30:41.727 INFO  ------------- Check Quality Gate status
16:30:41.727 INFO  Waiting for the analysis report to be processed (max 300s)
16:30:46.796 INFO  QUALITY GATE STATUS: PASSED - View details on https://sonarqube.silabs.net/dashboard?id=github_matter_sdk&pullRequest=654
16:30:46.798 INFO  Executing post-job 'Final report'
16:30:46.800 INFO  Turn debug info on to get more details (sonar-scanner -X -Dsonar.verbose=true ...).
16:30:46.822 INFO  Analysis total time: 29.353 s
16:30:46.822 INFO  SonarScanner Engine completed successfully
16:30:46.850 INFO  EXECUTION SUCCESS
16:30:46.851 INFO  Total time: 34.187s

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from 972e6b2 to 65f2bf4 Compare October 6, 2025 16:33
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Oct 6, 2025

🔍 SonarQube Static Analysis Results

Result:PASSED
Quality Gate Status: PASSED
Commit SHA: 65f2bf4bd35e3c5a03742b56154708b88f03433e

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-10-06 16:34:27 UTC

� Key Metrics

Metric Value
New Lines of Code 133
New Duplicated Lines Density 0.0%
New Violations 0
New Code Smells 0
New Bugs 0
New Vulnerabilities 0
New Security Hotspots 0

🏆 Quality Ratings

Category Rating
New Maintainability Rating 1.0
Reliability Rating 1.0
New Security Rating 1.0

�📋 Detailed Results

Click to view SonarQube output 
[Output truncated - showing last 2000 characters]

...endency-Check HTML report does not exists. Please check property sonar.dependencyCheck.htmlReportPath:/home/buildengineer/jenkins-worker/workspace/Matter_SDK_PR-654/${WORKSPACE}/dependency-check-report.html
16:34:19.301 INFO  HTML-Dependency-Check report does not exist.
16:34:19.301 INFO  Dependency-Check - End
16:34:19.301 INFO  Sensor Dependency-Check [dependencycheck] (done) | time=2ms
16:34:19.301 INFO  Sensor Zero Coverage Sensor
16:34:19.310 INFO  Sensor Zero Coverage Sensor (done) | time=9ms
16:34:19.311 INFO  SCM Publisher SCM provider for this project is: git
16:34:19.312 INFO  SCM Publisher 1 source file to be analyzed
16:34:19.436 INFO  SCM Publisher 1/1 source file have been analyzed (done) | time=123ms
16:34:19.441 INFO  CPD Executor 2 files had no CPD blocks
16:34:19.441 INFO  CPD Executor Calculating CPD for 14 files
16:34:19.458 INFO  CPD Executor CPD calculation finished (done) | time=16ms
16:34:19.462 INFO  SCM revision ID '65f2bf4bd35e3c5a03742b56154708b88f03433e'
16:34:19.516 INFO  SCM writing changed lines
16:34:19.529 INFO  Merge base sha1: bb5e14031ad3657c75f467c3f6fb542241aa84df
16:34:19.557 INFO  SCM writing changed lines (done) | time=41ms
16:34:19.562 INFO  Analysis report generated in 99ms, dir size=369.4 kB
16:34:19.594 INFO  Analysis report compressed in 32ms, zip size=71.1 kB
16:34:19.642 INFO  Analysis report uploaded in 47ms
16:34:19.643 INFO  ------------- Check Quality Gate status
16:34:19.643 INFO  Waiting for the analysis report to be processed (max 300s)
16:34:24.710 INFO  QUALITY GATE STATUS: PASSED - View details on https://sonarqube.silabs.net/dashboard?id=github_matter_sdk&pullRequest=654
16:34:24.712 INFO  Executing post-job 'Final report'
16:34:24.714 INFO  Turn debug info on to get more details (sonar-scanner -X -Dsonar.verbose=true ...).
16:34:24.734 INFO  Analysis total time: 28.388 s
16:34:24.735 INFO  SonarScanner Engine completed successfully
16:34:24.760 INFO  EXECUTION SUCCESS
16:34:24.761 INFO  Total time: 30.742s

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from 65f2bf4 to eba8bbc Compare October 6, 2025 16:36
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Oct 6, 2025

🔍 SonarQube Static Analysis Results

Result:FAILED
Quality Gate Status: FAILED
Commit SHA: 7a01284d3fceeb21ff2a1071bf7e3324812dd6c4

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-10-06 16:37:35 UTC

� Key Metrics

Metric Value
New Lines of Code 195
New Duplicated Lines Density 0.0%
New Violations 4
New Code Smells 3
New Bugs 1
New Vulnerabilities 0
New Security Hotspots 1

🏆 Quality Ratings

Category Rating
New Maintainability Rating 1.0
Reliability Rating 3.0
New Security Rating 1.0

�📋 Detailed Results

Click to view SonarQube output 
SonarQube analysis failed: script returned exit code 3

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from eba8bbc to 64504ac Compare October 6, 2025 16:41
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Oct 6, 2025

🔍 SonarQube Static Analysis Results

Result:FAILED
Quality Gate Status: FAILED
Commit SHA: 9d2bcf5f847c7dbe99dbb5d6691d793e47e8af01

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-10-06 16:42:50 UTC

� Key Metrics

Metric Value
New Lines of Code 195
New Duplicated Lines Density 0.0%
New Violations 4
New Code Smells 3
New Bugs 1
New Vulnerabilities 0
New Security Hotspots 1

🏆 Quality Ratings

Category Rating
New Maintainability Rating A
Reliability Rating C
New Security Rating A

�📋 Detailed Results

Click to view SonarQube output 
SonarQube analysis failed: script returned exit code 3

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from 64504ac to 6635c8d Compare October 6, 2025 16:49
@silabs-matter-ci-bot
Copy link

silabs-matter-ci-bot bot commented Oct 6, 2025

🔍 SonarQube Static Analysis Results

Result:FAILED
Quality Gate Status: FAILED
Commit SHA: f4e89bd9c1b3d8f64ea215ed7b03cecc6e627ac4

📊 Analysis Summary

  • Branch: feature/enable_static_analysis_matter_sdk
  • Target: main
  • Analysis Time: 2025-10-06 16:55:42 UTC

� Key Metrics

Metric Value
New Lines of Code 195
New Duplicated Lines Density 0.0%
New Violations 4
New Code Smells 3
New Bugs 1
New Vulnerabilities 0
New Security Hotspots 1

🏆 Quality Ratings

Category Rating
New Maintainability Rating A
Reliability Rating C
New Security Rating A

�📋 Detailed Results

Click to view SonarQube output 
SonarQube analysis failed: script returned exit code 3

🤖 Automated comment by Jenkins CI

@sabollim-silabs sabollim-silabs force-pushed the feature/enable_static_analysis_matter_sdk branch from 7a061ca to 3b2e902 Compare October 6, 2025 17:03
@sabollim-silabs sabollim-silabs changed the title Test PR for Static Analysis Enable Static Analysis in matter_sdk usings jenkins manual trigger Oct 6, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@sabollim-silabs @restyled-commits