Skip to content

Merge pull request #279 from jenkinsci/dependabot/maven/com.github.ei… #497

Merge pull request #279 from jenkinsci/dependabot/maven/com.github.ei…

Merge pull request #279 from jenkinsci/dependabot/maven/com.github.ei… #497

Workflow file for this run

name: CI build
on:
push:
branches: [ master ]
pull_request:
branches: [ master ]
jobs:
build:
runs-on: ubuntu-latest
strategy:
matrix:
java: [11,17,21]
steps:
- uses: actions/checkout@v4
- name: Set up JDK ${{ matrix.java }}
uses: actions/setup-java@v4
with:
java-version: ${{ matrix.java }}
distribution: 'zulu'
cache: 'maven'
- name: Set up Node.js
uses: actions/setup-node@v4
with:
node-version: 'lts/*'
- name: check Sonar pre-conditions
id: check_sonar
continue-on-error: true
env:
SONAR_TOKEN: ${{ secrets.SONARCLOUD_TOKEN }}
SONAR_ORGANIZATION: ${{ secrets.SONARCLOUD_ORGANIZATION }}
run: test "${SONAR_ORGANIZATION}" -a "${SONAR_TOKEN}"
shell: bash
- name: Build with Sonar
id: build_sonar
if: matrix.java == '17' && steps.check_sonar.outcome == 'success' && !startsWith(github.head_ref, 'dependabot/')
env:
SONAR_TOKEN: ${{ secrets.SONARCLOUD_TOKEN }}
SONAR_ORGANIZATION: ${{ secrets.SONARCLOUD_ORGANIZATION }}
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: mvn -B clean test verify package sonar:sonar -Dsonar.host.url=https://sonarcloud.io -Dsonar.projectKey=org.jenkins-ci.plugins:dependency-track -Dsonar.organization=$SONAR_ORGANIZATION -Dsonar.token=$SONAR_TOKEN
- name: Build without Sonar
if: steps.build_sonar.conclusion == 'skipped'
run: mvn -B clean test verify package
- name: Sonar Quality Gate check
id: sonarqube-quality-gate-check
uses: sonarsource/sonarqube-quality-gate-action@master
if: steps.build_sonar.conclusion == 'success'
with:
scanMetadataReportFile: target/sonar/report-task.txt
env:
SONAR_TOKEN: ${{ secrets.SONARCLOUD_TOKEN }}
SONAR_ORGANIZATION: ${{ secrets.SONARCLOUD_ORGANIZATION }}
- uses: actions/upload-artifact@v4
if: matrix.java == '11' && success()
with:
path: target/dependency-track.hpi
name: dependency-track.hpi