SonarScanner Docker 10.x?

SonarQube Server / Community Build
1

Hi,

Today our renovate bot found a new version of the sonarscanner CLI on dockerhub.

renovate_cli_dockerhub
renovate_cli_dockerhub1104×440 27.6 KB

sonar_scanner
sonar_scanner1269×319 17.5 KB

This looks strange to such increment. I can only see java and node 20 update on this container

I was not able to find any detail on GitHub - SonarSource/sonar-scanner-cli-docker: Docker image for SonarScanner CLI

openjdk version "17.0.11" 2024-04-16
OpenJDK Runtime Environment (build 17.0.11+9-alpine-r0)
OpenJDK 64-Bit Server VM (build 17.0.11+9-alpine-r0, mixed mode, sharing)
10f10b2be974:/usr/src$ sonar-scanner --version
INFO: Scanner configuration file: /opt/sonar-scanner/conf/sonar-scanner.properties
INFO: Project root configuration file: NONE
INFO: SonarScanner 5.0.1.3006
INFO: Java 17.0.11 Alpine (64-bit)
INFO: Linux 5.15.133.1-microsoft-standard-WSL2 amd64
10f10b2be974:/usr/src$ node --version
v20.12.1

Thanks

2

Hi,

We need to separate the Docker image version from the scanner version. We had an incident last month because we needed to make security changes in the Docker image. With matching versions, that meant replacing the old image with no fallback.

I’m a little surprised we jumped all the way to 10, but… why not? I’m not sure about Renovate Bot, but here’s our developer bumping the version number.

 
HTH,
Ann

1 Like
3

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.