Does SonarQube scanning of Helm charts support custom values.yml files?

SonarQube Server / Community Build
, , ,
1

Hi!

We’re using SonarQube Enterprise Edition v10.5.1 (90531), installed as a zip, with enabled quality profile for Kubernetes that supports scanning of Helm charts.

But since we have environment-specific configuration for Helm deployments we’re using environment-specific values files that have different names, i.e. deploy-values-dev.yml, deploy-values-prod.yml, etc.

From what we can see SonarQube supports only default values.yml name and currently fails for us with following error message: ##[error]ERROR: Failed to evaluate Helm file .../templates/hpa.yaml: Failed to find values file

Can someone please confirm if SonarQube only supports default values.yml naming for scanning Helm charts and if it’s planned to support custom names for values files?

Thanks in advance!

2 Likes
5

Hello @krisssde, and welcome to the community!

I can confirm that the Kubernetes analyzer currently only supports values.yaml in his scanning of Helm charts.
I can also confirm that the support of other values charts is planned, here is the ticket to follow track about it.
I cannot provide much information about when this is planned to be delivered, but Kubernetes with Helm is an ongoing topic that we regularly work on.

Hope that answers your questions.
Best,
Rudy

5 Likes