Sonarqube + Github PR decoration issue

Relevant information:

  • which versions are you using?
    SonarQube Developer Edition: 10.1.0.73491
    Deployed on AWS ECS using a recent official image from dockerhub: sonarqube:10.1-developer

  • how is SonarQube deployed: AWS ECS + Postgres DB on RDS

  • what are you trying to achieve: PR Decoration in Github PRs

  • what have you tried so far to achieve this: Followed setup instructions here GitHub integration

App settings within Github:
Permissions-
Read access to code, commit statuses, members, metadata, and organization projects
Read and write access to checks and pull requests
Repository access-
All repositories

Callback URL: contains the full https URL of our sonarqube instance

Client Secret + Private key configured.

This actually used to work, but stopped working at some unknown point and this was pointed out recently. Newly created PRs don’t have the post from the bot containing the coverage check. I rechecked that the github app aligns with the setup instructions, but I’m not sure how to troubleshoot the PR decoration not working. I’m mainly looking for instructions on how I can further troubleshoot this issue or suggestions of what commonly goes wrong in this situation.

Hi,

If you were on a different platform, I would say your access token to the platform had probably expired, but that doesn’t look like a thing GitHub does. On the other hand, it’s worth checking that your GitHub App hasn’t been revoked.

But really, the first place to look is in your ce.log server log.

 
Ann

If I see messages in the logs such as “Report branch Quality Gate status to devops platforms | status=SUCCESS | time=3ms” does this refer to the PR decoration supposedly succeeding from the sonarqube side or is this something else?

Hi,

Well, that particular log line is a different step. That’s sending Quality Gate status back to your CI. I believe PR decoration happens afterward, but I won’t swear to it.

 
Ann