[
https://issues.apache.org/jira/browse/DAFFODIL-2856?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17807359#comment-17807359
]
John Interrante commented on DAFFODIL-2856:
-------------------------------------------
Dependabot never sent us a PR asking us to update the
sonarsource/sonarcloud-github-action. That action is running the scan using
Java 11:
> Run sonarsource/[email protected]
> INFO: SonarScanner 4.8.1.3023
> INFO: Java 11.0.20 Alpine (64-bit)
> INFO: Linux 6.2.0-1018-azure amd64
[Releases ·
SonarSource/sonarcloud-github-action|https://github.com/SonarSource/sonarcloud-github-action/releases]
shows the current release is v2.1.1 and that we missed nearly one year's worth
of updates.
> Configure SonarCloud scan run on Java 17
> ----------------------------------------
>
> Key: DAFFODIL-2856
> URL: https://issues.apache.org/jira/browse/DAFFODIL-2856
> Project: Daffodil
> Issue Type: Bug
> Components: Infrastructure
> Reporter: Steve Lawrence
> Assignee: Peter Katlic
> Priority: Critical
> Fix For: 3.7.0
>
>
> Received an email with the following from SonarCloud:
> {quote}
> Starting from the 15th of November 2023, SonarCloud will no longer accept
> scans executed using Java 11. This decision has been made to ensure the
> platform's compatibility with the latest technologies and to provide you with
> an enhanced experience.
> To continue benefiting from SonarCloud's advanced features and analysis
> capabilities, we strongly encourage you to migrate your runtime environment
> for the analysis to Java 17 as soon as possible.{quote}
> We should update our github action to run on our Java 17 matrix instead of
> Java 11:
> https://github.com/apache/daffodil/blob/main/.github/workflows/main.yml#L88-L95
> Marking as critical since this will happen fairly soon, and we don't want
> builds to start breaking.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
