mirror of
https://github.com/vector-im/element-web.git
synced 2026-05-15 09:26:17 +02:00
f5ec194937
* Tweak github actions to make Sonar & zizmor happier * Apply filters on some pnpm install calls * Remove stale setup-python step * Add missing needs in complete job * Remove repository_dispatch for everything bar develop CD js-sdk now runs the tests downstream so this was unnecessary * Fix prepare desktop for tests in merge queue * Iterate * Iterate * Iterate * Discard changes to .github/workflows/build_desktop_linux.yaml * Discard changes to .github/workflows/build_desktop_macos.yaml
28 lines
1004 B
YAML
28 lines
1004 B
YAML
name: SonarQube
|
|
on:
|
|
# Privilege escalation necessary to call upon SonarCloud
|
|
# 🚨 We must not execute any checked out code here.
|
|
workflow_run: # zizmor: ignore[dangerous-triggers]
|
|
workflows: ["Tests"]
|
|
types:
|
|
- completed
|
|
concurrency:
|
|
group: ${{ github.workflow }}-${{ github.event.workflow_run.head_branch }}
|
|
cancel-in-progress: true
|
|
permissions: {}
|
|
jobs:
|
|
sonarqube:
|
|
name: 🩻 SonarQube
|
|
if: github.event.workflow_run.conclusion == 'success' && github.event.workflow_run.event != 'merge_group'
|
|
uses: matrix-org/matrix-js-sdk/.github/workflows/sonarcloud.yml@develop # zizmor: ignore[unpinned-uses]
|
|
permissions:
|
|
actions: read
|
|
statuses: write
|
|
id-token: write # sonar
|
|
secrets:
|
|
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
|
|
ELEMENT_BOT_TOKEN: ${{ secrets.ELEMENT_BOT_TOKEN }}
|
|
with:
|
|
sharded: true
|
|
version-pkg-json-dir: ./apps/web
|