➕ Add new reusable GA workflow about triggering SonarQube cloud service to scan and analyse entire project.

Chisanan232 · Chisanan232 · commit 3cdc86b81b36 · 2023-10-19T10:03:48.000+08:00
diff --git a/.github/workflows/sonarqube_scan.yaml b/.github/workflows/sonarqube_scan.yaml
@@ -0,0 +1,57 @@
+###################################################################################################################################
+#
+# Workflow Description:
+#     Trigger SonarQube cloud service to scan entire project to check code quality, security, etc.
+#
+# Workflow input parameters:
+#     * General arguments:
+#         * download_path: The path to download testing coverage reports via 'actions/download-artifact@v3'.
+#
+#     * Secret arguments:
+#         * github_token: The token for operating something with GitHub service.
+#         * sonar_token: The API token for triggering SonarQube cloud service.
+#
+# Workflow running output:
+#     No and do nothing.
+#
+###################################################################################################################################
+
+name: Upload test report to Codecov
+
+on:
+  workflow_call:
+    inputs:
+      download_path:
+        description: "The path to download testing coverage reports via 'actions/download-artifact@v3'."
+        type: string
+        required: false
+        default: ./
+
+    secrets:
+      github_token:
+        description: "The API token for uploading testing coverage report to Codecov."
+        required: true
+      sonar_token:
+        description: "The API token for uploading testing coverage report to Coveralls."
+        required: true
+
+
+jobs:
+  upload_test_cov_report:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0  # Shallow clones should be disabled for a better relevancy of analysis
+
+      - name: Download code coverage result files which has be handled by different test type process
+        uses: actions/download-artifact@v3
+        with:
+          name: test_coverage_xml_report
+          path: ${{ inputs.download_path }}
+
+      - name: SonarCloud Scan
+        uses: SonarSource/sonarcloud-github-action@master
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}  # Needed to get PR information, if any
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
