Failed to query JRE metadata:failed with HTTP 403

BansalGaurav · June 30, 2025, 7:50am

ALM used :- Bitbucket Cloud
CI system used :- Bitbucket Cloud
Below Scanner command used in bitbucket repository

       name: Build, test and analyze on SonarCloud
       image: maven:3.8.4-openjdk-17
       caches:
         - maven
         - sonar
       script:
         - mvn -B verify -s settings.xml org.sonarsource.scanner.maven:sonar-maven-plugin:sonar

Languages of the repository :- Java / Spring-boot
Error observed (wrap logs/code around with triple quotes ``` for proper formatting)

[INFO] Communicating with SonarQube Cloud
[INFO] JRE provisioning: os[linux], arch[x86_64]
[ERROR] Failed to query JRE metadata: GET https://api.sonarcloud.io/analysis/jres?os=linux&arch=x86_64 failed with HTTP 403. Please check the property sonar.token or the environment variable SONAR_TOKEN.
[INFO] ------------------------------------------------------------------------
[INFO] BUILD FAILURE
[INFO] ------------------------------------------------------------------------

Step to resolve :- Create new sonar token and update it in Bitbucket repository variables.

We maintain around 100+ private repositories in Bitbucket from last 4-5 years but we never faced this issue in past. But from last 1-2 weeks , We have started facing this issue in our bitbucket pipelines. After re-generating the token and updating it in Bitbucket repository variables , this issue gets resolved.
It wastes the time of developer and manual effort is required to debug the issue and create the token and update it repositories.

We would like to understand

What is the reason of getting this error suddenly in our pipelines?
Any solution by which these errors can be avoided.

Colin · June 30, 2025, 8:55am

Hey @BansalGaurav

It is likely related to one of these two changes:

BansalGaurav · June 30, 2025, 12:24pm

Hey @Colin ,

Thanks for these links.

Now it looks like out pipelines are failing due to following change Removing inactive tokens after 60 days

But it is inconvenient and would like to have token with longer expiry date.
I understand some more features are in roadmap but is there any other workaround solution ?

Colin · June 30, 2025, 2:02pm

One workaround is to use the same token across multiple projects, rather than having a separate token for each one. This way, the token is regularly used and is less likely to be flagged as inactive and removed after 60 days.

However, if you prefer separate tokens for each project, unfortunately there isn’t a way to change the inactivity expiration period right now. You’ll need to wait for future updates where this might become configurable or managed differently.

system · July 7, 2025, 2:03pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Bitbucket Cloud Maven scan fails with no project key or organization SonarQube Cloud scanner	1	1410	November 11, 2019
Github CI/CD getting inconsistent 403 errors on JRE metadata SonarQube Cloud	15	640	May 20, 2025
403 after upgrading sonar-maven-plugin to 5.0.0.4389 SonarQube Server / Community Build sonarqube , scanner	4	236	February 20, 2025
Error 403 GET https://api.sonarcloud.io/analysis/jres?os=windows&arch=amd64 SonarQube Server / Community Build scanner	1	976	November 7, 2024
Unable to Run Analysis on Bitbucket Repository SonarQube Cloud java , scanner	1	30	September 24, 2024

Failed to query JRE metadata:failed with HTTP 403

Related topics