olabusayo commented on issue #323: WIP: Configure Sonarcloud.io URL: https://github.com/apache/incubator-daffodil/pull/323#issuecomment-585282683 You're right. That's quite unfortunate. Sonarcloud doesn't give the option to manage the permissions of tokens, or to create local users, so exposure of SONAR_TOKEN could have undesirable security consequences. So until Github or Sonarqube figures a way around this, we'll only run on a scan on push (aka merge), and we can check the results then.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services
