Skip to content

Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0 #201

Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0

Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0 #201

Workflow file for this run

name: SonarCloud
on:
push:
branches:
- main
pull_request:
types: [opened, synchronize, reopened]
permissions:
contents: read
pull-requests: read
jobs:
sonarcloud:
name: SonarCloud
runs-on: ubuntu-latest
if: ${{ !github.event.pull_request.head.repo.fork }}
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis
submodules: recursive
- uses: actions/setup-go@v5
with:
go-version: '^1.19'
- name: Install dependencies
run: go install
working-directory: ${{ env.relativePath }}
- name: Build SDK project
run: go build
working-directory: ${{ env.relativePath }}
- name: Run unit tests
run: go test -coverprofile cover.out -coverpkg=./... ./...
working-directory: ${{ env.relativePath }}
- name: SonarCloud Scan
uses: SonarSource/sonarcloud-github-action@master
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}