- ALM used: GitHub
- CI system used: GitHub Actions
- Scanner command used:
- Languages of the repository: Java
To work around this, I’m planning to
- run the build in the read-only environment,
- save the artifacts,
- download artifacts & run
mvn sonar:sonarfrom the privilieged env to analyze.
This should work fine from what I have read, and indeed I’ve tested this locally already and it runs fine.
Now I’d like to retrieve some form of report via the WebAPI to show in the external PR comment, similar to
sonar.pullrequest.github.summary_comment. Is there a way to retrieve this through the WebAPI?