I’m trying to run SonarCloud as a GitHub Action to analyze a Helm chart folder. However, even though SonarCloud can detect it is a Helm chart folder, it does not find any issue in the chart. By checking the Rules, at least some should fail (e.g., CPU requests should be specified), and other tools (e.g., checkov) can find many issues.
To clarify, I do not have the Enterprise edition, I do not know whether it makes a difference.
The following are my logs:
...
INFO Sensor IaC Kubernetes Sensor [iac]
INFO 37 source files to be parsed
INFO 37/37 source files have been parsed
INFO 37 source files to be analyzed
INFO 37/37 source files have been analyzed
INFO 37 source files to be checked
INFO 37/37 source files have been checked
INFO Sensor IaC Kubernetes Sensor [iac] (done) | time=793ms
...
We do raise some minor issues on this chart (see analysis on SonarQube Cloud), but maybe on files you don’t have in your repository.
There is no memory limit issue (S6864) since the limit is defined in _resources.tpl (here). When running the helm template command, we see that the memory limit is indeed present in the evaluated template (here).
The MySQL chart uses a Helm subchart common. Currently, our analyzer can’t correctly evaluate templates with subchart references, preventing issues from being raised. This is a known limitation, you can track our progress on the issue in the related Jira ticket: Jira
Thanks for using our products and your investment in the community. If you need any other assistance, let us know!