Skip to content

[APIPUB-76] - Adds Sonar Analyzer #118

[APIPUB-76] - Adds Sonar Analyzer

[APIPUB-76] - Adds Sonar Analyzer #118

Workflow file for this run

# SPDX-License-Identifier: Apache-2.0
# Licensed to the Ed-Fi Alliance under one or more agreements.
# The Ed-Fi Alliance licenses this file to you under the Apache License, Version 2.0.
# See the LICENSE and NOTICES files in the project root for more information.
name: On Pull Request
on:
pull_request:
branches: [ main ]
paths:
- "**/*.cs"
- "**/*.csproj"
- ".github/**/*.yml"
workflow_dispatch:
permissions: read-all
jobs:
scan-actions-bidi:
name: Scan Actions, scan all files for BIDI Trojan Attacks
uses: ed-fi-alliance-oss/ed-fi-actions/.github/workflows/repository-scanner.yml@main
with:
config-file-path: ./.github/workflows/bidi-config.json
build-and-test:
name: Build and Test
runs-on: ubuntu-latest
permissions:
security-events: write
defaults:
run:
shell: pwsh
steps:
- name: Checkout the Repo
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
- name: Setup .NET
uses: actions/setup-dotnet@607fce577a46308457984d59e4954e075820f10a # v3.0.3
with:
dotnet-version: 8.0.x
- name: Build
run: ./build.ps1 -Command Build -Configuration Debug
- name: Run Unit Tests
if: success()
run: ./build.ps1 -Command UnitTest -Configuration Debug
- name: Upload Results as Workflow Artifact
uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
with:
name: csharp-tests
path: "**/*.trx"
retention-days: 5
- name: Dependency Review ("Dependabot on PR")
uses: actions/dependency-review-action@9129d7d40b8c12c1ed0f60400d00c92d437adcce # v4.1.3
- name: Initialize CodeQL
if: success()
uses: github/codeql-action/init@cf7e9f23492505046de9a37830c3711dd0f25bb3 # codeql-bundle-v2.16.2
with:
languages: csharp
- name: Rebuild for CodeQL
run: ./build.ps1 -Command Build -Configuration Debug
- name: Perform CodeQL Analysis
if: success()
uses: github/codeql-action/analyze@cf7e9f23492505046de9a37830c3711dd0f25bb3 # codeql-bundle-v2.16.2
event_file:
name: "Event File"
runs-on: ubuntu-latest
steps:
- name: Upload
uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
with:
name: Event File
path: ${{ github.event_path }}