We have been facing severe performance issues with SonarCloud ajava scanner while scannin gour code base on SVN. It is a private project. When we started using SonarCloud last year, runtime was around 40 minutes for the entire pipeline to complete. We use an agent hosted on a private cloud setup and can handle only one pipeline job at a time.
Based on online suggestions, we deactivated certain security related rules from SinarCloud JAVA quality profile. Though it worked for few days again, we started same performance issues again. We are not using default Sonar Way quality profile and have a separate copy of the default quality profile.
We increased timeout from default 0 to 180 minutes in all the tasks. However, the pipeline (DevOps) runs for 3 hours and then times out resulting in incomplete scans.
The pipeline itself looks good. It has:
- Link to SVN Azure link
- Task to prepare analysis for SonarCloud
- Ant Build.xml
- Run Code Analysis
- Publish Quality Gate Result.
The failure due to slow performance and time out is stage 4: Run Code Analysis.