which versions are you using: dotnet scanner ADOS build task v7
how is SonarQube deployed: docker
what are you trying to achieve: Run a scan using the new scanner
what have you tried so far to achieve this: Following the documentation
Per documentation, the default password for the scanner certificate keystore is ‘sonar’. This is at odds with keytool, which requires passwords be 6 characters or more. It is impossible to create or change the password of an existing keystore with the password ‘sonar’ using keytool.
You are right. I discovered that a bit late, and now I don’t see how to change that without breaking many things since many scanners are now released with this default.
During our tests, we were either using openssl to create keystore (and openssl accepts shorter passwords), or we were using a longer password, and passing it to the scanner using -Dsonar.scanner.truststorePassword=xxxxxxx
or setting the env variable SONAR_SCANNER_TRUSTSTORE_PASSWORD=xxxxxxx
I will think about a migration path for a longer default password, but I can not promise.