diff options
author | Julien HENRY <julien.henry@sonarsource.com> | 2024-05-13 11:40:25 +0200 |
---|---|---|
committer | Julien HENRY <julien.henry@sonarsource.com> | 2024-05-21 12:25:39 +0200 |
commit | 7e070fb6d45225a283bf4a44c431251af3673635 (patch) | |
tree | f41ae48e629fc39cd2923b68096e7020e1b88955 | |
parent | 9e72835bb09a703c7bb91ba387fef09f881d5418 (diff) | |
download | sonar-scanner-cli-7e070fb6d45225a283bf4a44c431251af3673635.tar.gz sonar-scanner-cli-7e070fb6d45225a283bf4a44c431251af3673635.zip |
Enable Mend scan
-rw-r--r-- | .cirrus.yml | 27 | ||||
-rw-r--r-- | wss-unified-agent.config | 19 |
2 files changed, 45 insertions, 1 deletions
diff --git a/.cirrus.yml b/.cirrus.yml index 0405791..a70cce5 100644 --- a/.cirrus.yml +++ b/.cirrus.yml @@ -43,7 +43,7 @@ ec2_instance: &EC2_INSTANCE_WINDOWS platform: windows only_sonarsource_qa: &ONLY_SONARSOURCE_QA - only_if: $CIRRUS_USER_COLLABORATOR == 'true' && ($CIRRUS_PR != "" || $CIRRUS_BRANCH == "master" || $CIRRUS_BRANCH =~ "branch-.*" || $CIRRUS_BRANCH =~ "dogfood-on-.*") + only_if: $CIRRUS_USER_COLLABORATOR == 'true' && $CIRRUS_TAG == "" && ($CIRRUS_PR != "" || $CIRRUS_BRANCH == $CIRRUS_DEFAULT_BRANCH || $CIRRUS_BRANCH =~ "branch-.*" || $CIRRUS_BUILD_SOURCE == 'api' ) except_nightly_cron: &EXCEPT_ON_NIGHTLY_CRON only_if: $CIRRUS_CRON != $NIGHTLY_CRON @@ -52,6 +52,7 @@ except_nightly_cron: &EXCEPT_ON_NIGHTLY_CRON # TASKS # build_task: + <<: *ONLY_SONARSOURCE_QA eks_container: <<: *EKS_CONTAINER env: @@ -67,6 +68,30 @@ build_task: cleanup_before_cache_script: - cleanup_maven_repository +mend_scan_task: + depends_on: + - build + eks_container: + <<: *EKS_CONTAINER + cpu: 2 + memory: 2G + # run only on master and long-term branches + only_if: $CIRRUS_USER_COLLABORATOR == 'true' && $CIRRUS_TAG == "" && ($CIRRUS_BRANCH == $CIRRUS_DEFAULT_BRANCH || $CIRRUS_BRANCH =~ "branch-.*") + env: + WS_APIKEY: VAULT[development/kv/data/mend data.apikey] + maven_cache: + folder: ${CIRRUS_WORKING_DIR}/.m2/repository + whitesource_script: + - source cirrus-env QA + - source set_maven_build_version $BUILD_NUMBER + - mvn clean install -DskipTests --batch-mode + - source ws_scan.sh + cleanup_before_cache_script: cleanup_maven_repository + allow_failures: "true" + always: + ws_artifacts: + path: "whitesource/**/*" + linux_qa_java17_task: depends_on: - build diff --git a/wss-unified-agent.config b/wss-unified-agent.config new file mode 100644 index 0000000..f4c634a --- /dev/null +++ b/wss-unified-agent.config @@ -0,0 +1,19 @@ +# Mend documentation https://docs.mend.io/bundle/unified_agent/page/unified_agent_configuration_parameters.html + +excludes=**/*sources.jar **/*javadoc.jar its/** +fileSystemScan=False +resolveAllDependencies=False + +maven.aggregateModules=True +maven.downloadMissingDependencies=False +maven.m2RepositoryPath=.m2/repository +maven.resolveDependencies=True +maven.runPreStep=False +maven.ignoredScopes=provided,test,system + +wss.url=https://saas-eu.whitesourcesoftware.com/agent + +forceUpdate=true +checkPolicies=true +forceUpdate.failBuildOnPolicyViolation=true +productName=Scanner/CLI |