Analyze .NET Core solution with SonarCloud and Github Actions

ngruson · November 9, 2019, 6:34pm

Hi,

I’d like to analyze my .NET Core solution with SonarCloud in Github Actions.
Is this a supported scenario?
I followed the instructions at SonarCloud Scan · Actions · GitHub Marketplace · GitHub and added the SonarCloud step to my workflow:

name: SonarCloud Scan
uses: sonarsource/sonarcloud-github-action@master
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

It fails with the following error:

Run sonarsource/sonarcloud-github-action@master
env:
DOTNET_ROOT: C:\hostedtoolcache\windows\dncs\2.2.108\x64
GITHUB_TOKEN: ***
SONAR_TOKEN:
##[error]Container action is only supported on Linux

I configured the SONAR_TOKEN in my GitHub settings as suggested, but I don’t see any GITHUB_TOKEN in my repo secrets. Is that a built-in token on Github?

ngruson · November 11, 2019, 2:49pm

Update: Resolved.
My GitHub Actions workflow was configured for Windows. This was no problem up until the SonarCloud task. I now configured it to run on Linux and now the workflow succeeds across the board.

name: .NET Core
on: [push]
jobs:
   build:
        runs-on: ubuntu-latest

Highbyte · July 6, 2020, 7:53pm

Hi!

I’m curious how well the Action https://github.com/marketplace/actions/sonarcloud-scan worked? On the marketplace page it lists .NET solutions under “Do not use this GitHub action if you are in the following situations” I guess it’s because the action uses the SonarScanner CLI instead of the SonarScanner for MSBuild/DotNet Core.

I was looking around for alternatives in other Sonar DotNet Core Actions in the marketplace, but I couldn’t find anyone that supported pull request decoration. So I developed my own Action for this:

snaspinski · September 8, 2021, 5:44pm

I am not having good luck trying to get this to work… So, they are probably correct.

ngruson · September 10, 2021, 5:22am

I’m not using the action from the market place any more.
Instead, in my GitHub Actions workflow, I install the global tool dotnet-sonarscanner to analyze my code.
As a prereq, I’m also installing Java in a step for the global tool to work.

You can see an example here:

github.com

ngruson/AdventureWorks/blob/master/.github/workflows/build-all.yml

name: build-all

# Controls when the action will run. 
on:
  workflow_dispatch:

env:
  DOTNET_VERSION: 5.0.x
  
# A workflow run is made up of one or more jobs that can run sequentially or in parallel
jobs:
  # This workflow contains a single job called "build"
  build-windows:
    # The type of runner that the job will run on
    runs-on: windows-latest

    # Steps represent a sequence of tasks that will be executed as part of the job
    steps:
      # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
      - uses: actions/checkout@v2

This file has been truncated. show original

Topic		Replies	Views
Sonarcloud GitHub Action for .NET Core repo - not detecting code SonarQube Cloud sonarqube-cloud	2	1508	March 27, 2020
Sonar Scan for .Net Project on GitHub Actions SonarQube Cloud	25	222	July 26, 2024
.net analysis with GitHub Actions SonarQube Cloud csharp , scanner , github-actions , sonarqube-cloud	4	1071	May 13, 2021
Clarification on GitHub Action and .Net please SonarQube Server / Community Build	3	1209	January 26, 2021
Run SonarCloud for .net on Linux agent in GitHub Actions SonarQube Cloud dotnet , github-actions	4	2773	May 20, 2022

Analyze .NET Core solution with SonarCloud and Github Actions

Related topics