Skip to content
build-annotations

Bump javiertuya/sonarqube-action from 1.2.0 to 1.3.0 #56

Sign in to view logs

Bump javiertuya/sonarqube-action from 1.2.0 to 1.3.0

Bump javiertuya/sonarqube-action from 1.2.0 to 1.3.0 #56

Workflow file for this run

.github/workflows/build.yml at 6634164
name: build-annotations
on:
push:
branches-ignore:
- 'dependabot/**' #avoid duplicates: only run the PR, not the commit
- 'gh-pages' #GitHub pages do not trigger all tests
tags-ignore:
- 'v*' #avoid rerun existing commit on release
pull_request:
branches:
- 'main'
jobs:
test-java:
runs-on: ubuntu-latest
# if: ${{ false }} # disable for now
steps:
- uses: actions/checkout@v4
- uses: actions/setup-java@v4
with:
distribution: 'temurin'
java-version: '8'
cache: 'maven'
- name: Build Annotation project
run: mvn compile -U --no-transfer-progress
sonarqube:
needs: [ test-java ]
#if: ${{ false }} # disable for now
#This job fails when comming from a dependabot PR (can't read the sonarqube token for security reasons).
#Links to discussions and workaround at: https://github.com/giis-uniovi/samples-giis-template/issues/4
if: ${{ github.actor != 'dependabot[bot]' }}
runs-on: ubuntu-latest
steps:
- uses: javiertuya/sonarqube-action@v1.3.0
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
sonar-token: ${{ secrets.SONAR_TOKEN }}
publish-java-snapshot:
#if: ${{ false }} # disable for now
#avoid publishing PRs and dependabot branches
if: ${{ github.event_name != 'pull_request' && !contains('/head/refs/dependabot/', github.ref) }}
runs-on: ubuntu-latest
permissions:
contents: read
packages: write
steps:
- uses: javiertuya/branch-snapshots-action@v1.2.1
with:
token: ${{ secrets.GITHUB_TOKEN }}
java-version: '8'
mvn-deploy-args: '-P publish-github -DskipTests=true -Dmaven.test.failure.ignore=false -U --no-transfer-progress'
delete-old-snapshots: true
min-snapshots-to-keep: 2
always-keep-regex: "\\d*\\.\\d*\\.\\d*-main-SNAPSHOT$"