Ahmad_Azab
October 20, 2023, 4:04am
1
Hello all,
I have followed the process illustrated in the link: https://azuredevopslabs.com/labs/vstsextend/sonarcloud/ to integrate sonarcloud with azure DevOps and successfully analysed the Repo found in: https://github.com/SonarSource/sonar-scanning-examples.git . The reults were mainly C# codes.https://github.com/SonarSource/sonar-training-examples.git but the analyses results only returned C# code smells! Am I missing something? Why only C# being analysed?
Colin
October 23, 2023, 8:20am
2
Hey there.
How did you configure your Azure Pipelines YML? Feel free to share it here.
Ahmad_Azab
October 23, 2023, 9:34am
3
Hello Colin,
Kindly find below. Please note that I tried both Azure agent and a local agent on my laptop but no luck.
trigger:
- master
pool:
vmImage: ubuntu-latest
steps:
- checkout: self
fetchDepth: 0
- task: SonarCloudPrepare@1
inputs:
SonarCloud: *******
organization: *******
scannerMode: 'Other'
extraProperties: |
# Additional properties that will be passed to the scanner,
# Put one key=value per line, example:
# sonar.exclusions=**/*.bin
sonar.projectKey=********
sonar.projectName=Specific
- task: Gradle@2
inputs:
gradleWrapperFile: 'gradlew'
tasks: 'build'
publishJUnitResults: true
testResultsFiles: '**/TEST-*.xml'
codeCoverageToolOption: 'Cobertura'
codeCoverageClassFilesDirectories: 'build/classes/main/'
javaHomeOption: 'JDKVersion'
jdkVersionOption: '1.8'
gradleOptions: '-Xmx3072m'
sonarQubeRunAnalysis: true
sqGradlePluginVersionChoice: 'build'
spotBugsAnalysis: false
- task: SonarCloudPublish@1
inputs:
pollingTimeoutSec: '300'
Colin
October 23, 2023, 9:48am
4
It would be very surprising to see C# files analyzed in that case, as you aren’t using the Scanner for .NET.
Can you share the pipeline logs with --info appended to the Gradle command? I have a feeling you have a successful analysis already targeted at that project key, but the analysis you think you’re performing is never actually getting to SonarCloud.