Skip to content
CI build

Bump org.apache.maven.plugins:maven-dependency-plugin from 3.6.1 to 3.7.1 #85

Sign in to view logs

Bump org.apache.maven.plugins:maven-dependency-plugin from 3.6.1 to 3.7.1

Bump org.apache.maven.plugins:maven-dependency-plugin from 3.6.1 to 3.7.1 #85

Workflow file for this run

.github/workflows/ci-build.yml at fb3566a
name: CI build
on:
push:
branches: [ master ]
pull_request:
branches: [ master ]
schedule:
- cron: '0 6 1 * *'
workflow_dispatch:
jobs:
build:
strategy:
fail-fast: false
matrix:
java: [17, 21]
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Set up JDK ${{ matrix.java }}
uses: actions/setup-java@v4
with:
java-version: ${{ matrix.java }}
distribution: 'zulu'
cache: 'maven'
- name: check Sonar pre-conditions
id: check_sonar
continue-on-error: true
env:
SONAR_TOKEN: ${{ secrets.SONARCLOUD_TOKEN }}
SONAR_ORGANIZATION: ${{ secrets.SONARCLOUD_ORGANIZATION }}
run: test "${SONAR_ORGANIZATION}" -a "${SONAR_TOKEN}"
shell: bash
- name: Build with Sonar
id: build_sonar
if: matrix.java == '17' && steps.check_sonar.outcome == 'success' && !startsWith(github.head_ref, 'dependabot/')
env:
SONAR_TOKEN: ${{ secrets.SONARCLOUD_TOKEN }}
SONAR_ORGANIZATION: ${{ secrets.SONARCLOUD_ORGANIZATION }}
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: mvn -B clean test javadoc:jar site:site package verify sonar:sonar -Dsonar.host.url=https://sonarcloud.io -Dsonar.projectKey=de.sephiroth-j:spring-security-ltpa2 -Dsonar.organization=$SONAR_ORGANIZATION -Dsonar.token=$SONAR_TOKEN
- name: Build without Sonar
if: steps.build_sonar.conclusion == 'skipped'
run: mvn -B clean test package verify
- name: Sonar Quality Gate check
id: sonarqube-quality-gate-check
uses: sonarsource/sonarqube-quality-gate-action@master
if: steps.build_sonar.conclusion == 'success'
with:
scanMetadataReportFile: target/sonar/report-task.txt
env:
SONAR_TOKEN: ${{ secrets.SONARCLOUD_TOKEN }}
SONAR_ORGANIZATION: ${{ secrets.SONARCLOUD_ORGANIZATION }}