GithubActions sonarqube action not working after code build

SonarQube Server / Community Build
1
  • which versions are you using:
    INFO: SonarScanner 4.8.1.3023
    INFO: Java 11.0.20 Alpine (64-bit)
    INFO: Linux 5.14.0-427.16.1.el9_4.x86_64 amd64
    INFO: User cache: /opt/sonar-scanner/.sonar/cache
    INFO: Analyzing on SonarQube server 9.9.3.79811
  • how is SonarQube deployed: github market action sonarsource/sonarqube-scan-action
  • we are attempting to scan code base of frontend javascript / sveltkit for vercel hosting

When running scan before various components are being build scan works correctly, but once all components are build and ready to deploy scanner fails with following errror
Adding custom root certificate to java certificate store

37Warning: use -cacerts option to access cacerts keystore

38Certificate was added to keystore

39/entrypoint.sh: line 35: sonar-scanner: command not found

2

Hey there.

Can you share your full GitHub Actions YAMLs – one from where the scan is working, and the other where it isn’t?

6

Hi @Colin
It is working using ubuntu runner but it is not working using RHEL runner.
Without build scan it is working RHEL runner but after build scan we are facing the scanner command not found issue. Attached both working and not working actions.
Github_Action.zip (4.4 KB)

  • name: SonarQube Quality Gate check
    id: sonarqube-quality-gate-check
    uses: sonarsource/sonarqube-quality-gate-action@15767f0e4eb489cfdd989dc717fa78c038d0de8a
    timeout-minutes: 5 # # Force to fail step after specific time.
    env:
    SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
    SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }} #OPTIONAL
7

Hi @Colin
Me and Krzysztof both are working in same team.
Any update on this issue?

8

I have tried other way and it is working fine instead of using git action.

  • name: SonarQube scan
    run: |
    docker run --rm
    -e SONAR_HOST_URL=${{ secrets.SONAR_HOST_URL }}
    -e SONAR_TOKEN=${{ secrets.SONAR_TOKEN }}
    -e “GITHUB_REF” -e “GITHUB_HEAD_REF” -e “GITHUB_BASE_REF” -e “GITHUB_REF_NAME” -e GITHUB_ACTIONS=true
    -v “$PWD:/usr/src”
    -v “$HOME/.sonar/cache:/opt/sonar-scanner/.sonar/cache”
    sonar-scanner-cli:5

  • name: SonarQube Quality Gate check
    id: sonarqube-quality-gate-check
    uses: sonarsource/sonarqube-quality-gate-action@15767f0e4eb489cfdd989dc717fa78c038d0de8a
    timeout-minutes: 5 # # Force to fail step after specific time.
    env:
    SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
    SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }} #OPTIONAL

First build docker image with Sonarqube certificate and after add this docker image on above action.

FROM sonarsource/sonar-scanner-cli:5
COPY ./sonarqube.crt ./
WORKDIR /usr/lib/jvm/java-17-openjdk/lib/security
RUN keytool -import -trustcacerts -noprompt -alias sonarqube -file /usr/src/sonarqube.crt -keystore cacerts -storepass changeit
WORKDIR /usr/src