AzureDevops MSBuild analyses whole dotnet solution instead of changed files in PR pipeline

Roberto_Bubalo · December 19, 2023, 2:48pm

Hi, we’ve been using Sonar cloud analysis for a while now, it’s worked great, after the initial repo analysis it would only scan and report issues within files where we had new code.
However, a month ago or so, it started fully scanning the repo on every pipeline run, reporting all of the issues constantly and since we have some technical debt, this has made it unusable.

Our New code definition config is:
Number of days: 30

AzureDevOps
Project is dotnet c#

This is our PR pipeline config, which hasn’t been changed since we adopted SC a while back.

      - task: JavaToolInstaller@0
        inputs:
          versionSpec: '17'
          jdkArchitectureOption: 'x64'
          jdkSourceOption: 'PreInstalled'

      - task: SonarCloudPrepare@1
        inputs:
          SonarCloud: SonarCloud
          organization: {redacted_organization}
          scannerMode: MSBuild
          projectKey: {redacted_project_key}
          projectName: {redacted_project_name}

      - task: SonarCloudAnalyze@1
        inputs:
          jdkversion: 'JAVA_HOME'
      - task: SonarCloudPublish@1
        inputs:
          pollingTimeoutSec: '300'

Colin · December 20, 2023, 11:34am

Hey there.

Have you continued to run analysis of your main branch since first adopting SonarCloud?

Roberto_Bubalo · December 20, 2023, 12:15pm

Hi Colin,

we had a different pipeline which used to run analysis on our main branch, but that’s been dropped, so we are currently just running analysis in the PR pipeline.

Roberto

Colin · December 20, 2023, 1:37pm

I think that’s the ticket – the scanner is comparing your target branch analyzed on SonarCloud, and if it’s not up to date, the diff won’t be correct.

Roberto_Bubalo · December 20, 2023, 5:05pm

Hi Colin,

Thanks for quick reply, we will set up new pipeline trigger to continuously analyse our main branch on any change.
I will let you know if that solves our issue.

Kind regards,
Roberto

Roberto_Bubalo · December 22, 2023, 12:40pm

Hi Colin,

We made changes to our pipeline as per your suggestion, it all works as expected now.
Thanks a mil and happy holidays!

Kind regards,
Roberto

Colin · December 22, 2023, 12:56pm

Likewise!

system · December 29, 2023, 12:57pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Problem with detecting changes on PRs in Azure DevOps SonarQube Cloud csharp , dotnet , azuredevops , sonarqube-cloud	3	489	June 1, 2023
After upgrading Azure Pipeline task from v1 to v3 PR scan in analyzing untouched files SonarQube Cloud dotnet	3	19	December 4, 2024
Scanner analyses PRs but not main branch SonarQube Cloud azuredevops , sonarqube-cloud	5	623	December 14, 2021
AzureDevops 'Run Code Analysis' SonarCloud failure SonarQube Cloud sonarqube-cloud	7	2596	May 24, 2019
Analyse new\updated code only for dotnet projects SonarQube Cloud csharp , dotnet , sonarqube-cloud	6	557	June 7, 2021

AzureDevops MSBuild analyses whole dotnet solution instead of changed files in PR pipeline

Related topics