All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog and this project adheres to Semantic Versioning.
- The bundled version of Apache Maven has been updated to v3.9.1.
- Some minor bugfixes
- Upgrade to Maven 3.9.1
- Upgrade to NoeJS 20
- The bundled version of Apache Maven has been updated to v3.8.7.
- The bundled version of Node.js has been updated to v18.x.
- The bundled version of TypeScript has been updated to v4.9.4.
This version contains a minor bugfix.
- Fixes small awk issue causing annoying log message
A new maintainer has stepped forward! Welcome, Holger Stolzenberg!
- Container images are now available for amd64 and arm64 architecture. Thanks a lot, "odidev" for the initial pull request to introduce this feature.
- A new parameter
additional_sonar_scanner_optsis now available, which allows users to specifiy theSONAR_SCANNER_OPTSenvironment variable for elobarorated SonarQube scanner invocations.
- Main development branch has been renamed from
mastertomain. - Fully-automated CI/CD builds that will create container images with tag
:latestwhenever changes to themainbranch are pushed works again after some changes made by Docker Hub that broke the old CI/CD workflow.
- Setting argument
__debug=trueno longer breaks Maven-based builds. Thanks for the fix,Roberto C. Salome!
- Sonar CLI, bundled Node.js version and all other dependencies in the container image(s) have been updated to their latest release versions.
This version contains fixes provided by Julien Syx. Thanks for helping out and making this release possible!
-
Fix broken builds that occured when no
maven_settings_fileis set. (#66, #67) -
Pull request identification if
decorate_pris set totruehas been fixed.
Thanks to Chien Jon Soon and Pruthvidhar Rao Nadunooru for their contributions to this release!
- Globbing syntax support (
shopt -s globstar) has been added. (#60)
sonar.branch.nameshould now work correctly when performing pull-request analysis
- Base docker image has been updaed to openjdk:11.0.8-slim.
- The bundled Sonar Scanner CLI has been updated to v4.4.0.2170.
- The bundled TypeScript version has been updated to v3.9.7.
Thanks to "noelcat" for the pull request to add support for BitBucket pull request decorators.
- Support for BitBucket pull request decorations has been added.
- Base docker image has been updaed to openjdk:11.0.7-slim.
- The bundled Sonar Scanner CLI has been updated to v4.3.0.2102.
- The bundled TypeScript version has been updated to v3.9.5.
Thanks to Nabil Abdelwahd for the patch that made this release possible.
- The
branch_name_fileparameter should now work as supposed to. (#55)
Thanks to Samed Ozdemir who provided a patch to enhance the functionality of this resource for this release.
- The parameters
branch_name_fileandbranch_target_filehave been added to allow for more sophisticated integration options with SonarQube's branch management feature. (#52)
- The bundled TypeScript version has been updated to v3.8.3.
- The environment variable
NODE_PATHis now set correctly, which should fix issues with the sonar-typescript-plugin. (#51)
- JAVA_HOME was not correctly linked and rendered the
clivariant of the sonar-scanner unusable. (#50)
- Base container image has been downgraded to
openjdk:11.0.6-slimSonarQube scanners as of now only support Java 8 and Java 11 according to the documentation. Some plugins don't support newer Java runtimes which breaks all functionality of this resource.
- Base container image has been updated to
openjdk:13.0.1-slim - The bundled sonar-scanner-cli has been updated to v4.2.0.1873.
- The bundled Maven command line has been updated to v3.6.3.
- The bundled sonar-maven-plugin has been updated to v3.7.0.1746.
- The TypeScript (
tsc) command line has been removed in a prior version of the resource without proper notice. This breaks existing build pipelines that rely upon tsc's existence and therefore TypeScript has been re-added to the image and is now properly being version-managed. (#48)
- A container structure test has been added to the repository to make sure that the resource won't break as easily when updates are being made under the hood. (#48, #49)
Thanks to Fernando Torres for all the fixes and enhancements that went into this release!
- Add support for Pull Request decorations.
- Fixed an issue when parsing the project status after analysis. (#44)
- Fixed behavior of the defunct
autodetect_branch_nameflag.
- Improved support for wildcard path arguments for properties
ending with
*reportPaths.
- Corrected some documentation.
- New optional
outstep parameter:project_key_file. Thanks to Guillaume Pouilloux for the patch. - New optional
instep parameter:quality_gateThanks to Ming Xu for the patch. - Support for Wildcard path arguments. Thanks to Ming Xu for the patch.
- The output now contains additional metadata about quality gate status conditions Thanks to Ye Yang for the patch.
- The bundled sonar-scanner-cli has been updated to v4.0.0.1744.
- The bundled Maven command line has been updated to v3.6.1.
params.maven_settings_fileshould no longer be ignored. (#36)
- Error handling when fetching the compute engine status has been improved. Thanks to Rekha Mittal for the provided patch. (#33)
- A new flag (
additional_properties_file) can be used to instrument the sonar-scanner. Thanks to Horst Gutmanm for the provided patch.
- The bundled sonar-scanner-cli has been updated to v3.3.0.1492.
- The bundled sonar-maven-plugin has been updated to v3.6.0.1398.
- Fix issues when an auth-token (instead of username + password) is being used for authentication/authorization. Thanks to Febin Rejoe for the provided fix. (#31)
- If the specified URL of the SonarQube server instance doesn't end in a slash, the missing slash will be appended automatically. (#20)
- scanner-report.txt could not be found if
scanner_typewas set tomaven(#24) - Version 0.7.0 contained a bug where the bundled sonar-maven-plugin was not updated to version v3.5.0.1254 as originally announced. This version fixes this issue and makes sure that the desired version of he sonar-maven-plugin is being used.
- Custom maven settings are used correctly when perfoming SonarQube analysis. Thanks to Marek Urban for the provided fix. (#19)
- Docker builds should no longer fail because of corrupted sonar-scanner zip archive. (#26)
- Anonymous access to SonarQube servers that don't require authentication should now be possible. (#25)
- The integrity of the bundled Maven installation and the sonar-scanner distribution is now being checked agains sha512 checksums to ensure the contents of the downloads has not been altered.
- The bundled Maven installation has been updated to v3.6.0.
- The bundled sonar-maven-plugin has been updated to v3.5.0.1254.
- The idea of using a project-local maven wrapper instance seemed nice but was not really usable / stable in practice. Therefore the feature had to be removed.
- An issue with using the maven wrapper was introduced in 0.5.0.
If a project uses the maven wrapper and the scanner_type is set to
maven(or the scanner_type was automatically detected), such builds were broken, because the maven wrapper was not executed correctly.
- Anonymous analysis without username/password or access token should now be possible. (#13)
-
A new configuration parameter (
source.__debug) has been added that can be used to debug the resource itself when developing new features or fixing bugs. (This flag is not ment to be used in production environments, though!) -
The unit test framework has been enhanced and it should now be possible to write some real proper unit tests using the "bats" framework.
-
If the scanner type has been set to
maven(or if it has been automatically determined by the existence of a pom.xml file), the resource will now use the installed maven wrapper (if there is an executablemvwwfile in the project's root folder).
- Starting with this release, the shell scripts will use BASH's double brackets syntax for all if-checks, because it's generally less error-prone and and offers fewer surprises when dealing with nasty things such as uninitialized variables.
sonar.branch.namecan now be auto-detected ifparams.autodetect_branch_namehas been set totrue. (#3)
- Update sonar-scanner-cli to v3.2.0
- Update sonar-maven-plugin to v3.4.0
- Multiple additional parameters work now as supposed to. (#14)
- Workaround for buggy certificate propagations in Alpine OpenJDK images. (#16)
- Parameters that contain whitespace characters no longer fail the
outaction. (#6)
-
Support for
params.tests. (#7) -
Support for
params.branch_nameandparams.branch_target. Requires the Branch Plugin or SonarCloud.
params.sourcesmust now be specified as list instead of comma-separated strings
params.branchandparams.analysis_modeare no longer supported. (New SonarQube versions handle short-lived branches in a different way) Useparams.branch_nameandparams.branch_targetinstead if you use the Branch plugin.
- Support old SonarQube servers that don't report the server version in report-task.txt (Just report "unknown" as server version) (#11)
- Support old SonarQube servers that don't report the server version in report-task.txt (under certain conditions, this fix will not work though) (#11)
- Support for any additional properties that might need to be passed to the sonar-scanner.
- Updated the documentation to make clear how a quality gate can be used to break the build. (#9)
- Support for SonarQube/SonarCloud organizations. (#8)