ci: enable sonarqube analysis for contributors

dianjuar · dianjuar · commit 152222c8e83d · 2024-12-18T23:05:04.000-05:00
diff --git a/.github/workflows/pr.yml b/.github/workflows/pr.yml
@@ -1,4 +1,4 @@
-name: PR's
+name: PRs
 on:
   pull_request:
     types: [opened, synchronize, reopened]
@@ -10,8 +10,8 @@ jobs:
   pr-test:
     uses: ./.github/workflows/basic-test.yml
 
-  pr-e2e-test:
-    uses: ./.github/workflows/e2e-test.yml
+  # pr-e2e-test: # TODO Uncomment when SONAR for contributors PR is ready to tests
+  #   uses: ./.github/workflows/e2e-test.yml
 
   check-commit-lint:
     name: Check commit message follows guidelines
@@ -21,7 +21,9 @@ jobs:
       - uses: ./.github/actions/setup
 
       - name: Execute commitlint
-        run: npx commitlint --from=origin/${{ github.base_ref }}
+        run: npx commitlint --from="origin/$BASE_REF"
+    env:
+      BASE_REF: ${{ github.base_ref }}
 
   check-file-format:
     name: Check files changes follow guidelines
@@ -33,28 +35,6 @@ jobs:
       - name: Check if Prettier was run
         run: npx pretty-quick --check
 
-  backwards-compatibility-test:
-    needs: [pr-test]
-    uses: ./.github/workflows/backwards-compatibility-test.yml
-
-  pr-analysis:
-    name: SonarCloud Pr Analysis
-    runs-on: ubuntu-latest
-    needs: pr-test
-    steps:
-      - uses: actions/checkout@v4
-        with:
-          fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis
-
-      # Download reports
-      - uses: ./.github/actions/download-coverage-report
-      - uses: ./.github/actions/download-lint-report
-
-      - name: SonarCloud Scan
-        uses: SonarSource/sonarcloud-github-action@master
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
-          SONAR_TOKEN: ${{ secrets.SONARQUBE_SCANNER }}
-        with:
-          args: >
-            -Dsonar.pullrequest.key=${{ github.env.PR_NUMBER }}
+  # backwards-compatibility-test:  # TODO Uncomment when SONAR for contributors PR is ready to tests
+  #   needs: [pr-test]
+  #   uses: ./.github/workflows/backwards-compatibility-test.yml
diff --git a/.github/workflows/sonar-pr.yml b/.github/workflows/sonar-pr.yml
@@ -0,0 +1,33 @@
+name: Sonar for PRs
+on:
+  workflow_run:
+    workflows: ['PRs']
+    types: [requested]
+jobs:
+  sonar:
+    name: Sonar
+    runs-on: ubuntu-latest
+    timeout-minutes: 30
+    if: github.event.workflow_run.conclusion == 'success'
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          repository: ${{ github.event.workflow_run.head_repository.full_name }}
+          ref: ${{ github.event.workflow_run.head_branch }}
+          fetch-depth: 0
+
+      # Download reports
+      - uses: ./.github/actions/download-coverage-report
+      - uses: ./.github/actions/download-lint-report
+
+      - name: SonarCloud Scan
+        uses: sonarsource/sonarcloud-github-action@master
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+        with:
+          args: >
+            -Dsonar.scm.revision=${{ github.event.workflow_run.head_sha }}
+            -Dsonar.pullrequest.key=${{ github.event.workflow_run.pull_requests[0].number }}
+            -Dsonar.pullrequest.branch=${{ github.event.workflow_run.pull_requests[0].head.ref }}
+            -Dsonar.pullrequest.base=${{ github.event.workflow_run.pull_requests[0].base.ref }}
