SCANCLI-216 Update scanner library to fix proxy authentication on CONNECT #65
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Build | |
| on: | |
| push: | |
| branches: | |
| - master | |
| - branch-* | |
| - dogfood-* | |
| pull_request: | |
| merge_group: | |
| workflow_dispatch: | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }} | |
| cancel-in-progress: true | |
| jobs: | |
| build: | |
| runs-on: github-ubuntu-latest-s | |
| name: Build | |
| permissions: | |
| id-token: write | |
| contents: write | |
| steps: | |
| - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| with: | |
| fetch-depth: 0 | |
| - uses: jdx/mise-action@146a28175021df8ca24f8ee1828cc2a60f980bd5 # v3.5.1 | |
| with: | |
| version: 2025.7.12 | |
| tool_versions: | | |
| java 21 | |
| maven 3.9 | |
| node 18.17.0 | |
| - uses: SonarSource/ci-github-actions/build-maven@v1 | |
| with: | |
| deploy-pull-request: true | |
| maven-args: -Pdist-linux-x64,dist-linux-aarch64,dist-windows-x64,dist-macosx-x64,dist-macosx-aarch64 | |
| artifactory-reader-role: private-reader | |
| artifactory-deployer-role: qa-deployer | |
| linux-qa: | |
| needs: build | |
| runs-on: github-ubuntu-latest-s | |
| name: Linux QA - SQ ${{ matrix.sq_version }} | |
| permissions: | |
| id-token: write | |
| contents: read | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| include: | |
| - sq_version: LATEST_RELEASE[2025.1] | |
| java_version: "17" | |
| - sq_version: LATEST_RELEASE[2026.1] | |
| java_version: "21" | |
| - sq_version: LATEST_RELEASE | |
| java_version: "21" | |
| - sq_version: DEV | |
| java_version: "21" | |
| steps: | |
| - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| - uses: jdx/mise-action@146a28175021df8ca24f8ee1828cc2a60f980bd5 # v3.5.1 | |
| with: | |
| version: 2025.7.12 | |
| tool_versions: | | |
| java ${{ matrix.java_version }} | |
| maven 3.9 | |
| - name: Vault | |
| id: secrets | |
| uses: SonarSource/vault-action-wrapper@v3 | |
| with: | |
| secrets: | | |
| development/github/token/licenses-ro token | GITHUB_TOKEN; | |
| - uses: SonarSource/ci-github-actions/config-maven@v1 | |
| with: | |
| artifactory-reader-role: private-reader | |
| cache-paths: | | |
| ~/.m2/repository | |
| - name: Run Integration Tests | |
| env: | |
| SQ_VERSION: ${{ matrix.sq_version }} | |
| GITHUB_TOKEN: ${{ fromJSON(steps.secrets.outputs.vault).GITHUB_TOKEN }} | |
| run: | | |
| cd it | |
| mvn -B -e -Dsonar.runtimeVersion="${SQ_VERSION}" -Dmaven.test.redirectTestOutputToFile=false verify | |
| windows-qa: | |
| needs: build | |
| runs-on: github-windows-latest-s | |
| name: Windows QA - SQ ${{ matrix.sq_version }} | |
| permissions: | |
| id-token: write | |
| contents: read | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| include: | |
| - sq_version: LATEST_RELEASE[2025.1] | |
| java_version: "17" | |
| - sq_version: LATEST_RELEASE[2026.1] | |
| java_version: "21" | |
| - sq_version: LATEST_RELEASE | |
| java_version: "21" | |
| - sq_version: DEV | |
| java_version: "21" | |
| steps: | |
| - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| - uses: jdx/mise-action@146a28175021df8ca24f8ee1828cc2a60f980bd5 # v3.5.1 | |
| with: | |
| version: 2025.7.12 | |
| tool_versions: | | |
| java ${{ matrix.java_version }} | |
| maven 3.9 | |
| - name: Vault | |
| id: secrets | |
| uses: SonarSource/vault-action-wrapper@v3 | |
| with: | |
| secrets: | | |
| development/github/token/licenses-ro token | GITHUB_TOKEN; | |
| - uses: SonarSource/ci-github-actions/config-maven@v1 | |
| with: | |
| artifactory-reader-role: private-reader | |
| cache-paths: | | |
| ~/.m2/repository | |
| - name: Run Integration Tests | |
| shell: bash | |
| env: | |
| SQ_VERSION: ${{ matrix.sq_version }} | |
| GITHUB_TOKEN: ${{ fromJSON(steps.secrets.outputs.vault).GITHUB_TOKEN }} | |
| run: | | |
| cd it | |
| mvn -B -e -Dsonar.runtimeVersion="${SQ_VERSION}" -Dmaven.test.redirectTestOutputToFile=false verify | |
| promote: | |
| needs: | |
| - linux-qa | |
| - windows-qa | |
| runs-on: github-ubuntu-latest-s | |
| name: Promote | |
| permissions: | |
| id-token: write | |
| contents: write | |
| steps: | |
| - uses: SonarSource/ci-github-actions/promote@v1 | |
| with: | |
| promote-pull-request: true |