Scanning of Pull requests are not happening [BLOCKING]

vishwa007 · June 3, 2021, 1:24pm

I am struggling setting up SONAR Cloud in my project. I have the SONAR Cloud subscription.
I have many problems using it.
Problems:

When I push code in any branch - SONAR starts the merge request analysis and run successfully but at the end dashboard is shown all ZEROs. Please check the screen shot.
If I specify the branch name in the sonar project property file then it is able to analyse and show some results but then - It is not handy to hard code branch name in the property file.
Once branch analysis is done - (after specifying a specific branch name in property file) - I see Test Coverage is Zero while there are so many Unit tests are written.

Claire_Villard · June 4, 2021, 3:32pm

HI @vishwa007, welcome to the community,

Could you please share with us:

the CI you use
the language(s) of your project
the pipeline file or the command used to run the Sonar Scanner
the logs produced during the Sonar Scanner analysis

vishwa007 · June 6, 2021, 2:39pm

Hi @Claire_Villard

Here are the answers to all the questions you asked for:

CI. - GitLab CI is used
JavaScript/TypeScript and PHP ( tried on all 3 projects)

Following command is setup in the Pipeline Stage:

  stage: Sonarcloud Scan
  image:
    name: sonarsource/sonar-scanner-cli:latest
    entrypoint: [""]
  cache:
    key: "${CI_JOB_NAME}"
    paths:
      - .sonar/cache
  script:
    - sonar-scanner -Dsonar.qualitygate.wait=true
  rules:
    - if: $CI_MERGE_REQUEST_ID && $CI_MERGE_REQUEST_TARGET_BRANCH_NAME == "development"
      when: always
      allow_failure: true```

Following is setup in Sonar Project propery file:
# This is the name and version displayed in the SonarCloud UI.
sonar.projectName=Monorepo-poc
sonar.projectVersion=1.0

# Path is relative to the sonar-project.properties file. Replace "\" by "/" on Windows.
sonar.sources=packages/frontoffice/src
sonar.tests=packages/frontoffice/tests/unit

Log has got many confidential information. Let me know how can I arrange this?

vishwa007 · June 7, 2021, 6:44am

@Claire_Villard
Note: In the first screenshot, if you see every KPI is zero except one - Code duplication. That is always calculated. How is that possible.

simon.schrottner · June 7, 2021, 12:28pm

the question is also which files have changed. The Pull Request/Merge Request view will only show you changes based on the files you changed.

If you do not change source files, there will not be coverage in the PR overview. see also https://stackoverflow.com/a/61754439/3708208

Try to add some source code changes and see if this changes something with your code

vishwa007 · June 7, 2021, 1:20pm

Hi @simon.schrottner @Claire_Villard ,

Thanks for the response. For any PR requests, I am able to see the analysis on all the lines of changes done.
But we do not see analysis of overall branch. How can we achieve that? We are expecting something like this - where I can see analysis of a specific PR and also overall analysis of that branch. Something like this: We get this when we are running Sonar analysis in my local in docker:

Also We do not know how to setup this following setting which is related to “New Code” definition.

Screenshot 2021-06-07 at 14.50.511421×645 42.3 KB
So how can I analyse the whole branch whenever there is a pull request created?

Claire_Villard · June 7, 2021, 1:39pm

About 1. and 3.
Overall analysis does not exist for Pull Requests. All code updated in a Pull Request is considered as new code. SonarCloud philosophy is to clean the code while coding, meaning all the new code should be clean, but fixing all the code that already works would be a difficult work. You can find more information on this on that page.
To have overall analysis on a given branch, you should not analyze it as a Pull Request but as a Long living branch. Here is the documentation to configure the Long living branch pattern.

Have you read the New code definition dedicated page? To help you further on that configuration, I would need to know the kind of release management to have on your project: version based, continuous delivery, other…

system · June 15, 2021, 9:51am

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.