Hello,
We are using Sonarcloud and have the integration with Circle CI via its ORB and to perform the code scan as part of any Pull Request.
We want to have Quality gate setup in Sonarcloud to block a build if it has a Blocking or Critical vulnerability.
We created a PR against a repository which had such a code vulnerability and executed the build.
The PR shows as failed in Sonarcloud Quality gate results, however, the CircleCI build passed successfully.
We are using GitHub as source code repository and have it integrated with Sonarcloud, however, there was also no notification in the PR in GitHub for the Sonarcloud Quality gate failure.
Please assist on how we can address our requirement.