diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index a9d65cf0..3ec8cb52 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -15,9 +15,9 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up JDK 8 - uses: actions/setup-java@v3 + uses: actions/setup-java@v4 with: java-version: '8' distribution: 'temurin' @@ -35,9 +35,9 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up JDK 8 - uses: actions/setup-java@v3 + uses: actions/setup-java@v4 with: java-version: '8' distribution: 'temurin' @@ -53,3 +53,23 @@ jobs: ORG_GRADLE_PROJECT_signingKey: ${{ secrets.PGP_SECRET }} ORG_GRADLE_PROJECT_signingPassword: ${{ secrets.PGP_PASSPHRASE }} run: ./gradlew publish --no-daemon + + sonar: + name: Run SonarCloud + needs: [build] + runs-on: ubuntu-latest + + steps: + - uses: actions/checkout@v4 + - name: Set up JDK 17 + uses: actions/setup-java@v4 + with: + java-version: '17' + distribution: 'temurin' + cache: 'gradle' + + - name: SonarCloud Scan + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information + SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} # Generate a token on Sonarcloud.io, add it to the secrets of this repo with the name SONAR_TOKEN (Settings > Secrets > Actions > add new repository secret) + run: ./gradlew test jacocoTestReport sonar --no-daemon diff --git a/build.gradle b/build.gradle index 5c9cc545..db3198ba 100644 --- a/build.gradle +++ b/build.gradle @@ -4,6 +4,7 @@ plugins { id 'maven-publish' id 'io.github.gradle-nexus.publish-plugin' version "1.3.0" id 'org.cyclonedx.bom' version "1.8.1" + id 'jacoco' id 'org.sonarqube' version "4.0.0.2929" }