ci(sage-monorepo): try sonar scan workflow triggered by fork PR #11
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Scan affected projects with Sonar | |
| on: | |
| pull_request_target: | |
| types: [opened, synchronize, reopened] | |
| env: | |
| HEAD_REPOSITORY: ${{ github.event.pull_request.head.repo.full_name }} | |
| HEAD_REF: ${{ github.event.pull_request.head.ref }} | |
| SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} | |
| jobs: | |
| push: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v3 | |
| name: Checkout ${{ env.HEAD_REF }} from repository ${{ env.HEAD_REPOSITORY }} | |
| with: | |
| ref: ${{ env.HEAD_REF }} | |
| repository: ${{ env.HEAD_REPOSITORY }} | |
| fetch-depth: 0 | |
| - name: Derive appropriate SHAs for base and head for `nx affected` commands | |
| uses: nrwl/nx-set-shas@v3 | |
| - name: Set up the dev container | |
| uses: ./.github/actions/setup-dev-container | |
| - name: Scan scanner prototype for openchallenges-app | |
| run: ./tools/sonar-scanner-for-pr.sh ${{github.event.pull_request.number}} "${{env.HEAD_REPOSITORY}}:${{env.HEAD_REF}}" | |
| # - name: Scan the affected projects with Sonar | |
| # run: | | |
| # devcontainer exec --workspace-folder ../sage-monorepo bash -c ". ./dev-env.sh \ | |
| # && nx affected --target=sonar" |