Could you please be more explicit? What were you expecting and what don’t you see?
Also, do you see any warning at the top right of the screen of the Pull Request in SonarQube?
I am trying to get the Merge request overview in Gitlab. I believe that is also called Pull Request Decoration. I can see the quality gate is failed and PR pipeline is failed but I don’t see the merge request overview from sonarqube to Gitlab.
Yes, I don’t have any warnings.
Feature definition from Sonarqube Gitlab Integration website: SonarQube publishes Quality Gate and code metric results right in the Merge Request overview. You’re always getting the right info, at the right time and in the right place."
Yes I have enabled debug in ce.logs and did check for anything suspicious. Could find anything odd, attached it for reference…sonarqube.ce.log (12.4 KB)
Looks like the scanner is detecting a regular branch named feature/sonarqube-pr-decoration, not a merge request. Are you actually running the scanner on a build of a merge request?
By Default, GitLab runs a pipeline each time when changes are pushed to a branch. So merge request won’t be there when the build is triggered. I create the MR while the pipeline is being built.
Should I try to configure pipelines for merge requests option? I can’t see any details on this in sonarqube to gitlab integration documentation
Thanks Aurelie, after adding the merge request condition, I could see the PR decoration came through with zero vulnerabilities. To confirm full flow, I retried by adding vulnerabilities in the code. When I tried so, I noticed the analysis never completes. Its running for 4 days.
I am not sure how to stop the analysis. I have restarted the service now.
When I checked the logs in gitlab, I see gitlab timed out after 300s with below information and passed the pipeline.
INFO: Waiting for the analysis report to be processed (max 300s)
I wonder whether I have to increase the timeout to more than 300s? Not sure how to do it.
Separately, I am unable to open the ce.log as the files has gone massively big.
Thanks for the documentation reference, I considered merge_request to be optional similar to master branch condition.
Apparently I don’t have to increase the timeout I have to make change in gitlab configuration to accept the increased payload of information sent from sonarqube.