From af04f7b4a105ec55f5e65ef538ac3e0940a9b8ae Mon Sep 17 00:00:00 2001 From: hsiegeln <37154749+hsiegeln@users.noreply.github.com> Date: Sat, 4 Apr 2026 18:08:35 +0200 Subject: [PATCH] ci: add nightly SonarQube analysis workflow Runs at 02:00 UTC daily (same schedule as cameleer3 and cameleer3-server). Uses cameleer-build:1 image, excludes TestContainers integration tests. Co-Authored-By: Claude Opus 4.6 (1M context) --- .gitea/workflows/sonarqube.yml | 35 ++++++++++++++++++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 .gitea/workflows/sonarqube.yml diff --git a/.gitea/workflows/sonarqube.yml b/.gitea/workflows/sonarqube.yml new file mode 100644 index 0000000..cda62f1 --- /dev/null +++ b/.gitea/workflows/sonarqube.yml @@ -0,0 +1,35 @@ +name: SonarQube Analysis + +on: + schedule: + - cron: '0 2 * * *' # Nightly at 02:00 UTC + workflow_dispatch: # Allow manual trigger + +jobs: + sonarqube: + runs-on: ubuntu-latest + container: + image: gitea.siegeln.net/cameleer/cameleer-build:1 + credentials: + username: cameleer + password: ${{ secrets.REGISTRY_TOKEN }} + steps: + - uses: actions/checkout@v4 + with: + fetch-depth: 0 # Full history for blame data + + - name: Cache Maven dependencies + uses: actions/cache@v4 + with: + path: ~/.m2/repository + key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} + restore-keys: ${{ runner.os }}-maven- + + - name: Build, Test and Analyze + run: >- + mvn clean verify sonar:sonar --batch-mode + -Dsurefire.excludes="**/AuthControllerTest.java,**/TenantControllerTest.java,**/LicenseControllerTest.java,**/AuditRepositoryTest.java,**/CameleerSaasApplicationTest.java,**/EnvironmentControllerTest.java,**/AppControllerTest.java,**/DeploymentControllerTest.java" + -Dsonar.host.url=${{ secrets.SONAR_HOST_URL }} + -Dsonar.token=${{ secrets.SONAR_TOKEN }} + -Dsonar.projectKey=cameleer-saas + -Dsonar.projectName="Cameleer SaaS"