SONARJAVA-6211 Upload artifacts if ruling or autoscan fails by tomasz-tylenda-sonarsource · Pull Request #5532 · SonarSource/sonar-java

tomasz-tylenda-sonarsource · 2026-03-25T13:35:35Z

To help understand the problem we upload:

raw actual results
html diff
Test run with intentionally broken ruling: https://github.com/SonarSource/sonar-java/actions/runs/23587514988

hashicorp-vault-sonar-prod · 2026-03-25T13:36:22Z

sonar-review-alpha · 2026-03-25T16:10:47Z

Summary

Adds a reusable GitHub Action that uploads integration test artifacts and generates an HTML diff report when ruling or autoscan tests fail. This helps developers debug test failures by providing a visual side-by-side comparison of expected vs actual results without needing to run tests locally. The action is then integrated into the CI workflow for both ruling and autoscan jobs.

What reviewers should know

The core logic is in the new .github/actions/upload-actual/action.yml — it's a composite action with three steps: upload raw actual results, generate a diff using Unix diff and diff2html-cli, then upload the HTML report. The build.yml changes are simple applications of this action to the ruling and autoscan jobs, both guarded by if: failure() so they only run when tests fail. Note that diff2html-cli is invoked via npx (requires npm/Node at runtime), and artifacts are retained for 7 days. The action is parameterized to handle different directory structures for ruling vs autoscan.

Generate Walkthrough
Generate Diagram

🗣️ Give feedback

asya-vorobeva

Generally looks OK. Probably makes sense to upload also artifacts for autoscan tests. Or do it in another PR.

asya-vorobeva · 2026-03-25T16:28:43Z

+        with:
+          name: actual_${{ matrix.item.runner }}_${{ matrix.item.profile }}
+          path: its/ruling/target/actual
+          retention-days: 7


I think it makes sense to configure this policy on repo level.

I don't have access to do this, but I moved the parameter to a global env in a shared action.

sonar-review-alpha

Conclusion: Clean, focused CI change. The three new steps work correctly together — the artifact names are safely namespaced by runner/profile, the || true on diff correctly absorbs its non-zero exit code when differences exist, and the if: failure() conditions are appropriate throughout.

🗣️ Give feedback

This reverts commit 4d52220.

This reverts commit f48908e.

tomasz-tylenda-sonarsource · 2026-03-26T10:13:31Z

Generally looks OK. Probably makes sense to upload also artifacts for autoscan tests. Or do it in another PR.

Done. I extracted a shared action (which is good idea even with one usage).

sonarqube-next · 2026-03-26T10:40:56Z

Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
0 Dependency risks
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarQube

asya-vorobeva

💯

hashicorp-vault-sonar-prod Bot changed the title ~~Upload ruling artifacts~~ SONARJAVA-6211 Upload ruling artifacts Mar 25, 2026

tomasz-tylenda-sonarsource force-pushed the tt/ruling-artifacts branch 3 times, most recently from 611adfa to 2843571 Compare March 25, 2026 15:24

tomasz-tylenda-sonarsource changed the title ~~SONARJAVA-6211 Upload ruling artifacts~~ SONARJAVA-6211 Upload artifacts if qa-ruling fails Mar 25, 2026

tomasz-tylenda-sonarsource changed the title ~~SONARJAVA-6211 Upload artifacts if qa-ruling fails~~ SONARJAVA-6211 Upload artifacts if ruling-qa fails Mar 25, 2026

tomasz-tylenda-sonarsource force-pushed the tt/ruling-artifacts branch from 2843571 to fbdfcfb Compare March 25, 2026 15:46

tomasz-tylenda-sonarsource marked this pull request as ready for review March 25, 2026 16:10

tomasz-tylenda-sonarsource requested a review from asya-vorobeva March 25, 2026 16:12

asya-vorobeva requested changes Mar 25, 2026

View reviewed changes

sonar-review-alpha Bot reviewed Mar 25, 2026

View reviewed changes

tomasz-tylenda-sonarsource force-pushed the tt/ruling-artifacts branch from ecb01f3 to eeaf393 Compare March 26, 2026 09:31

tomasz-tylenda-sonarsource added 3 commits March 26, 2026 10:39

Upload ruling artifacts

5c21036

Break some ruling goldens

4d52220

Break autoscan goldens

f48908e

tomasz-tylenda-sonarsource force-pushed the tt/ruling-artifacts branch from a6aed3f to f48908e Compare March 26, 2026 09:40

tomasz-tylenda-sonarsource changed the title ~~SONARJAVA-6211 Upload artifacts if ruling-qa fails~~ SONARJAVA-6211 Upload artifacts if ruling or autoscan fails Mar 26, 2026

tomasz-tylenda-sonarsource added 2 commits March 26, 2026 11:05

Revert "Break some ruling goldens"

75026ba

This reverts commit 4d52220.

Revert "Break autoscan goldens"

56cb566

This reverts commit f48908e.

tomasz-tylenda-sonarsource requested a review from asya-vorobeva March 26, 2026 10:13

Prevent injection

1aa08f9

asya-vorobeva approved these changes Mar 26, 2026

View reviewed changes

tomasz-tylenda-sonarsource merged commit 91519e8 into master Mar 26, 2026
15 of 16 checks passed

tomasz-tylenda-sonarsource deleted the tt/ruling-artifacts branch March 26, 2026 10:57

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SONARJAVA-6211 Upload artifacts if ruling or autoscan fails#5532

SONARJAVA-6211 Upload artifacts if ruling or autoscan fails#5532
tomasz-tylenda-sonarsource merged 6 commits intomasterfrom
tt/ruling-artifacts

tomasz-tylenda-sonarsource commented Mar 25, 2026 •

edited

Loading

Uh oh!

hashicorp-vault-sonar-prod Bot commented Mar 25, 2026 •

edited by atlassian Bot

Loading

Uh oh!

sonar-review-alpha Bot commented Mar 25, 2026 •

edited

Loading

Uh oh!

asya-vorobeva left a comment

Uh oh!

asya-vorobeva Mar 25, 2026

Uh oh!

tomasz-tylenda-sonarsource Mar 26, 2026

Uh oh!

sonar-review-alpha Bot left a comment

Uh oh!

tomasz-tylenda-sonarsource commented Mar 26, 2026

Uh oh!

sonarqube-next Bot commented Mar 26, 2026

Uh oh!

asya-vorobeva left a comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

tomasz-tylenda-sonarsource commented Mar 25, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

hashicorp-vault-sonar-prod Bot commented Mar 25, 2026 • edited by atlassian Bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

sonar-review-alpha Bot commented Mar 25, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Summary

What reviewers should know

Uh oh!

asya-vorobeva left a comment

Choose a reason for hiding this comment

Uh oh!

asya-vorobeva Mar 25, 2026

Choose a reason for hiding this comment

Uh oh!

tomasz-tylenda-sonarsource Mar 26, 2026

Choose a reason for hiding this comment

Uh oh!

sonar-review-alpha Bot left a comment

Choose a reason for hiding this comment

Uh oh!

tomasz-tylenda-sonarsource commented Mar 26, 2026

Uh oh!

sonarqube-next Bot commented Mar 26, 2026

Quality Gate passed

Uh oh!

asya-vorobeva left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

tomasz-tylenda-sonarsource commented Mar 25, 2026 •

edited

Loading

hashicorp-vault-sonar-prod Bot commented Mar 25, 2026 •

edited by atlassian Bot

Loading

sonar-review-alpha Bot commented Mar 25, 2026 •

edited

Loading