Update dependency org.sonarsource.scanner.maven:sonar-maven-plugin from v5.0.0.4389 to v5.1.0.4751 #23
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Build and push | |
| on: | |
| push: | |
| branches: | |
| - master | |
| pull_request: | |
| branches: | |
| - master | |
| env: | |
| JFROG_USER: ${{ secrets.ARTIFACTORY_AUTH_USER }} | |
| JFROG_PASS: ${{ secrets.ARTIFACTORY_AUTH_TOKEN }} | |
| jobs: | |
| maven-package: | |
| if: "!contains(github.event.head_commit.message, 'ci skip')" | |
| runs-on: ubuntu-24.04 | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - name: Install xmlstarlet | |
| run: | | |
| sudo rm -rf /var/lib/apt/lists/* | |
| sudo apt-get update | |
| sudo apt-get -y install xmlstarlet | |
| - name: Copy maven settings | |
| run: | | |
| wget https://raw.githubusercontent.com/entur/ror-maven-settings/master/.m2/settings.xml -O .github/workflows/settings.xml | |
| - uses: actions/setup-java@v4 | |
| with: | |
| java-version: 17.0.13 | |
| distribution: temurin | |
| - name: Cache Maven dependencies | |
| uses: actions/cache@v4 | |
| with: | |
| path: ~/.m2/repository | |
| key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} | |
| restore-keys: | | |
| ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} | |
| ${{ runner.os }}-maven- | |
| ${{ runner.os }}- | |
| - name: Run maven build | |
| run: mvn package -s .github/workflows/settings.xml | |
| - name: Sonar Scan | |
| env: | |
| SONAR_TOKEN: ${{ secrets.ENTUR_SONAR_PASSWORD }} | |
| SONAR_PROJECT_NAME: ${{ github.event.repository.name }} | |
| SONAR_PROJECT_KEY: entur_${{ github.event.repository.name }} | |
| run: | | |
| mvn -Psonar -s .github/workflows/settings.xml \ | |
| org.jacoco:jacoco-maven-plugin:prepare-agent verify \ | |
| org.jacoco:jacoco-maven-plugin:report sonar:sonar \ | |
| -Dmaven.main.skip \ | |
| -DskipTests \ | |
| -Dsonar.projectKey=${SONAR_PROJECT_KEY} \ | |
| -Dsonar.organization=enturas-github \ | |
| -Dsonar.projectName=${SONAR_PROJECT_NAME} \ | |
| -Dsonar.host.url=https://sonarcloud.io \ | |
| -Dsonar.token=${SONAR_TOKEN} | |