[Fix] - Avoid logging sensitive derivation details #491
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: sonarcloud-analysis | |
| on: | |
| pull_request: | |
| branches: | |
| - "master" | |
| push: | |
| branches: | |
| - "master" | |
| permissions: | |
| contents: read | |
| pull-requests: read | |
| env: | |
| GO_VERSION: '1.24' | |
| GOLANGCI_LINT_VERSION: v2.1.6 | |
| jobs: | |
| sonarcloud: | |
| name: SonarCloud | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v6 | |
| with: | |
| fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis | |
| - uses: actions/setup-go@v6 | |
| with: | |
| go-version: ${{ env.GO_VERSION }} | |
| - name: Install test reporter | |
| run: go install github.com/ctrf-io/go-ctrf-json-reporter/cmd/go-ctrf-json-reporter@latest | |
| - name: Run Go tests | |
| run: go test -json -coverprofile=coverage.out ./... | go-ctrf-json-reporter -output ctrf-report.json | |
| continue-on-error: true | |
| - name: Publish Test Summary Results | |
| run: npx github-actions-ctrf ctrf-report.json | |
| # Re-run golangci separately without exiting on errors and generating a report for use in Sonar | |
| - name: golangci-lint | |
| uses: golangci/golangci-lint-action@v9 | |
| with: | |
| version: ${{ env.GOLANGCI_LINT_VERSION }} | |
| args: --timeout=5m --issues-exit-code=0 --output.checkstyle.path=golangci-lint-report.xml | |
| - name: SonarCloud Scan | |
| uses: SonarSource/sonarqube-scan-action@v6.0.0 | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} |