Skip to content

BUILD-8080: Gradle shadow scans#60

Merged
mikolaj-matuszny-ext-sonarsource merged 2 commits intomasterfrom
feat/mmatuszny/BUILD-8879-ud-gradle
Aug 22, 2025
Merged

BUILD-8080: Gradle shadow scans#60
mikolaj-matuszny-ext-sonarsource merged 2 commits intomasterfrom
feat/mmatuszny/BUILD-8879-ud-gradle

Conversation

@mikolaj-matuszny-ext-sonarsource
Copy link
Copy Markdown
Contributor

@mikolaj-matuszny-ext-sonarsource mikolaj-matuszny-ext-sonarsource commented Aug 20, 2025
edited
Loading

BUILD-8079

Adds support for unified dogfooding in Gradle build
Removes echo which is mistakenly added to gradle command

@mikolaj-matuszny-ext-sonarsource mikolaj-matuszny-ext-sonarsource force-pushed the feat/mmatuszny/BUILD-8879-ud-gradle branch 2 times, most recently from c97b8f1 to 90646a4 Compare August 22, 2025 07:24
@mikolaj-matuszny-ext-sonarsource mikolaj-matuszny-ext-sonarsource force-pushed the feat/mmatuszny/BUILD-8879-ud-gradle branch from 90646a4 to 7ad71a5 Compare August 22, 2025 11:04
@mikolaj-matuszny-ext-sonarsource
Copy link
Copy Markdown
Contributor Author

mikolaj-matuszny-ext-sonarsource commented Aug 22, 2025

SonarSource/sonar-dummy-gradle-oss#271

@mikolaj-matuszny-ext-sonarsource mikolaj-matuszny-ext-sonarsource marked this pull request as ready for review August 22, 2025 11:23
@mikolaj-matuszny-ext-sonarsource mikolaj-matuszny-ext-sonarsource force-pushed the feat/mmatuszny/BUILD-8879-ud-gradle branch from 74e9c2c to 41b6789 Compare August 22, 2025 12:07
@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud Bot commented Aug 22, 2025

🤖 Pull Request summary

Updates Gradle build action to support multi-platform SonarQube analysis.

• Adds run-shadow-scans input parameter to enable analysis across all 3 SonarQube platforms (next, sqc-eu, sqc-us)
• Changes vault credential fetching to always retrieve tokens for all platforms instead of conditionally loading based on sonar-platform
• Implements orchestration logic via shared common functions to coordinate multi-platform scanning
• Prevents artifact deployment when shadow scans are enabled to avoid duplicate deployments
• Updates documentation with new input parameter and vault permission requirements

Focus areas for review:

  • The vault credential changes require all 3 platform credentials regardless of settings - ensure this doesn't break existing workflows
  • Shadow scan deployment prevention logic in should_deploy() function
  • Integration with the new shared orchestration functions

💬 Please send your feedback

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@matemoln
Copy link
Copy Markdown
Contributor

matemoln commented Aug 22, 2025

What do you think about hardening the implementation of build_gradle_args. Instead of echo "${args[@]}" we could use a variable to store the value. I'm okay if it is not part of this PR but we follow up later.

@mikolaj-matuszny-ext-sonarsource mikolaj-matuszny-ext-sonarsource merged commit 3e584be into master Aug 22, 2025
9 checks passed
@mikolaj-matuszny-ext-sonarsource mikolaj-matuszny-ext-sonarsource deleted the feat/mmatuszny/BUILD-8879-ud-gradle branch August 22, 2025 14:11
matemoln pushed a commit that referenced this pull request Aug 22, 2025
@mikolaj-matuszny-ext-sonarsource @matemoln
BUILD-8080 Gradle shadow scans (#60)
b4485d6 
* BUILD-8079 Gradle shadow scans

* BUILD-8079 Gradle shadow scans and fix bug with skip tests
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@matemoln matemoln matemoln approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mikolaj-matuszny-ext-sonarsource @matemoln