mirrors
/
sonar-scanner-cli
mirror of https://github.com/SonarSource/sonar-scanner-cli.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 32 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
682 Commits
15 Branches
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
sonar-scanner-cli/.cirrus.yml

.cirrus.yml 5.2KB
Raw Permalink Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160 
  1. #

  2. # ENV VARIABLES

  3. #

  4. env:

  5.   ### Shared variables

  6.   CIRRUS_VAULT_AUTH_PATH: jwt-cirrusci

  7.   CIRRUS_VAULT_ROLE: cirrusci-${CIRRUS_REPO_OWNER}-${CIRRUS_REPO_NAME}

  8.   CIRRUS_VAULT_URL: https://vault.sonar.build:8200

  9.   ARTIFACTORY_URL: VAULT[development/kv/data/repox data.url]

  10.   ARTIFACTORY_PRIVATE_USERNAME: vault-${CIRRUS_REPO_OWNER}-${CIRRUS_REPO_NAME}-private-reader

  11.   ARTIFACTORY_PRIVATE_PASSWORD: VAULT[development/artifactory/token/SonarSource-sonar-scanner-cli-private-reader access_token]

  12.   ARTIFACTORY_ACCESS_TOKEN: VAULT[development/artifactory/token/SonarSource-sonar-scanner-cli-private-reader access_token]

  13.   ARTIFACTORY_DEPLOY_USERNAME: vault-${CIRRUS_REPO_OWNER}-${CIRRUS_REPO_NAME}-qa-deployer

  14.   ARTIFACTORY_DEPLOY_PASSWORD: VAULT[development/artifactory/token/SonarSource-sonar-scanner-cli-qa-deployer access_token]

  15.   ARTIFACTORY_DEPLOY_REPO: sonarsource-public-qa

  16.   ARTIFACTORY_PROMOTE_ACCESS_TOKEN: VAULT[development/artifactory/token/${CIRRUS_REPO_OWNER}-${CIRRUS_REPO_NAME}-promoter access_token]

  17. 

  18.   BURGR_URL: VAULT[development/kv/data/burgr data.url]

  19.   BURGR_USERNAME: VAULT[development/kv/data/burgr data.cirrus_username]

  20.   BURGR_PASSWORD: VAULT[development/kv/data/burgr data.cirrus_password]

  21. 

  22.   ### Project variables

  23.   DEPLOY_PULL_REQUEST: true

  24.   ARTIFACTS: org.sonarsource.scanner.cli:sonar-scanner-cli:jar

  25.   NIGHTLY_CRON: 'nightly-cron'

  26. #

  27. # RE-USABLE CONFIGS

  28. #

  29. eks_container: &EKS_CONTAINER

  30.   region: eu-central-1

  31.   cluster_name: ${CIRRUS_CLUSTER_NAME}

  32.   namespace: default

  33.   image: ${CIRRUS_AWS_ACCOUNT}.dkr.ecr.eu-central-1.amazonaws.com/base:j17-m3-latest

  34.   cpu: 1

  35.   memory: 4G

  36. 

  37. ec2_instance: &EC2_INSTANCE_WINDOWS

  38.   experimental: true # see https://github.com/cirruslabs/cirrus-ci-docs/issues/1051

  39.   region: eu-central-1

  40.   subnet_id: ${CIRRUS_AWS_SUBNET}

  41.   type: t2.2xlarge

  42.   image: base-windows-jdk17-v*

  43.   platform: windows

  44. 

  45. only_sonarsource_qa: &ONLY_SONARSOURCE_QA

  46.   only_if: $CIRRUS_USER_COLLABORATOR == 'true' && $CIRRUS_TAG == "" && ($CIRRUS_PR != "" || $CIRRUS_BRANCH == $CIRRUS_DEFAULT_BRANCH || $CIRRUS_BRANCH =~ "branch-.*" || $CIRRUS_BUILD_SOURCE == 'api' )

  47. 

  48. except_nightly_cron: &EXCEPT_ON_NIGHTLY_CRON

  49.   only_if: $CIRRUS_CRON != $NIGHTLY_CRON

  50. 

  51. #

  52. # TASKS

  53. #

  54. build_task:

  55.   <<: *ONLY_SONARSOURCE_QA

  56.   eks_container:

  57.     <<: *EKS_CONTAINER

  58.   env:

  59.     SONAR_TOKEN: VAULT[development/kv/data/next data.token]

  60.     SONAR_HOST_URL: VAULT[development/kv/data/next data.url]

  61.     SIGN_KEY: VAULT[development/kv/data/sign data.key]

  62.     PGP_PASSPHRASE: VAULT[development/kv/data/sign data.passphrase]

  63.   maven_cache:

  64.     folder: ${CIRRUS_WORKING_DIR}/.m2/repository

  65.   script:

  66.     - source cirrus-env BUILD

  67.     - regular_mvn_build_deploy_analyze -Pdist-linux,dist-windows,dist-macosx

  68.   cleanup_before_cache_script:

  69.     - cleanup_maven_repository

  70. 

  71. mend_scan_task:

  72.   depends_on:

  73.     - build

  74.   eks_container:

  75.     <<: *EKS_CONTAINER

  76.     cpu: 2

  77.     memory: 2G

  78.   # run only on master and long-term branches

  79.   only_if: $CIRRUS_USER_COLLABORATOR == 'true' && $CIRRUS_TAG == "" && ($CIRRUS_BRANCH == $CIRRUS_DEFAULT_BRANCH || $CIRRUS_BRANCH =~ "branch-.*")

  80.   env:

  81.     WS_APIKEY: VAULT[development/kv/data/mend data.apikey]

  82.   maven_cache:

  83.     folder: ${CIRRUS_WORKING_DIR}/.m2/repository

  84.   whitesource_script:

  85.     - source cirrus-env QA

  86.     - source set_maven_build_version $BUILD_NUMBER

  87.     - mvn clean install -DskipTests --batch-mode

  88.     - source ws_scan.sh

  89.   cleanup_before_cache_script: cleanup_maven_repository

  90.   allow_failures: "true"

  91.   always:

  92.     ws_artifacts:

  93.       path: "whitesource/**/*"

  94. 

  95. linux_qa_java17_task:

  96.   depends_on:

  97.     - build

  98.   <<: *ONLY_SONARSOURCE_QA

  99.   eks_container:

  100.     <<: *EKS_CONTAINER

  101.   env:

  102.     matrix:

  103.       - SQ_VERSION: LATEST_RELEASE[9.9]

  104.       - SQ_VERSION: LATEST_RELEASE

  105.       - SQ_VERSION: DEV

  106.   maven_cache:

  107.     folder: ${CIRRUS_WORKING_DIR}/.m2/repository

  108.   qa_script:

  109.     - nodeVersion=18.17.0

  110.     - nodeName=node-v${nodeVersion}-linux-x64

  111.     - wget https://nodejs.org/download/release/v${nodeVersion}/${nodeName}.tar.gz

  112.     - tar xzf ${nodeName}.tar.gz -C /tmp

  113.     - export PATH=$PATH:/tmp/${nodeName}/bin

  114.     - source cirrus-env QA

  115.     - source set_maven_build_version $BUILD_NUMBER

  116.     - cd it

  117.     - mvn -B -e -Dsonar.runtimeVersion="$SQ_VERSION" -Dmaven.test.redirectTestOutputToFile=false verify

  118.   cleanup_before_cache_script:

  119.     - cleanup_maven_repository

  120. 

  121. win_qa_java17_task:

  122.   depends_on:

  123.     - build

  124.   <<: *ONLY_SONARSOURCE_QA

  125.   ec2_instance:

  126.     <<: *EC2_INSTANCE_WINDOWS

  127.   env:

  128.     CIRRUS_SHELL: bash

  129.     matrix:

  130.       - SQ_VERSION: LATEST_RELEASE[9.9]

  131.       - SQ_VERSION: LATEST_RELEASE

  132.       - SQ_VERSION: DEV

  133.   maven_cache:

  134.     folder: ${CIRRUS_WORKING_DIR}/.m2/repository

  135.   qa_script:

  136.     - source cirrus-env QA

  137.     - source set_maven_build_version $BUILD_NUMBER

  138.     - cd it

  139.     - mvn -B -e -Dsonar.runtimeVersion="$SQ_VERSION" -Dmaven.test.redirectTestOutputToFile=false verify

  140.   cleanup_before_cache_script:

  141.     - cleanup_maven_repository

  142. 

  143. promote_task:

  144.   depends_on:

  145.     - linux_qa_java17

  146.     - win_qa_java17

  147.   <<: *ONLY_SONARSOURCE_QA

  148.   <<: *EXCEPT_ON_NIGHTLY_CRON

  149.   eks_container:

  150.     <<: *EKS_CONTAINER

  151.     cpu: 0.5

  152.     memory: 500M

  153.   env:

  154.     GITHUB_TOKEN: VAULT[development/github/token/SonarSource-sonar-scanner-cli-promotion token]

  155.   maven_cache:

  156.     folder: $CIRRUS_WORKING_DIR/.m2/repository

  157.   script:

  158.     - cirrus_promote_maven

  159.   cleanup_before_cache_script:

  160.     - cleanup_maven_repository