Scanner kode med sonarcloud.

Signed-off-by: Ramin Esfandiari <[email protected]>

Author: ramrock93

.github/workflows/build-and-deploy.yml

@@ -33,6 +33,12 @@ jobs:
       - name: Test Code
         run: ./gradlew check
 
+      - name: SonarCloud Scan
+        run: ./gradlew test jacocoTestReport sonarqube
+        env:
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+          SONAR_HOST_URL: https://sonarcloud.io
+
   build-code-and-push-docker:
     name: Build code and push docker image
     if: startsWith(github.ref, 'refs/heads/dev-') || startsWith(github.ref, 'refs/heads/master') || github.event.deployment.payload.triggered # Build and push docker if branch is either master or dev-*

build.gradle.kts

@@ -2,12 +2,14 @@ import com.expediagroup.graphql.plugin.gradle.tasks.GraphQLGenerateClientTask
 import org.jetbrains.kotlin.gradle.tasks.KotlinCompile
 
 plugins {
-    id("org.springframework.boot") version "3.0.0"
-    id("io.spring.dependency-management") version "1.1.0"
-    id("com.expediagroup.graphql") version "6.3.0"
     kotlin("jvm") version "1.7.22"
     kotlin("plugin.spring") version "1.7.22"
     kotlin("plugin.jpa") version "1.7.22"
+    id("org.springframework.boot") version "3.0.0"
+    id("io.spring.dependency-management") version "1.1.0"
+    id("com.expediagroup.graphql") version "6.3.0"
+    id("org.sonarqube") version "3.3"
+    jacoco
 }
 
 group = "no.nav"
@@ -154,6 +156,7 @@ dependencyManagement {
 
 tasks.withType<Test> {
     useJUnitPlatform()
+    finalizedBy(tasks.jacocoTestReport) // report is always generated after tests run
 }
 
 tasks.withType<KotlinCompile> {
@@ -167,6 +170,24 @@ tasks.getByName<Jar>("jar") {
     enabled = false
 }
 
+tasks.jacocoTestReport {
+    dependsOn(tasks.test) // tests are required to run before generating the report
+    reports {
+        xml.required.set(true)
+        csv.required.set(false)
+    }
+}
+
+sonarqube {
+    properties {
+        property("sonar.projectKey", "navikt_sif-innsyn-api")
+        property("sonar.organization", "navikt")
+        property("sonar.host.url", "https://sonarcloud.io")
+        property("sonar.login", System.getenv("SONAR_TOKEN"))
+        property("sonar.sourceEncoding", "UTF-8")
+    }
+}
+
 /**
  * Generering av flere graphql klienter:
  *