[
https://issues.apache.org/jira/browse/CAMEL-22752?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Claus Ibsen updated CAMEL-22752:
--------------------------------
Component/s: build system
> [build] send message with merge sonar check failure
> ---------------------------------------------------
>
> Key: CAMEL-22752
> URL: https://issues.apache.org/jira/browse/CAMEL-22752
> Project: Camel
> Issue Type: Improvement
> Components: build system
> Reporter: Pasquale Congiusti
> Priority: Major
>
> Right now, when we merge a PR, the commit triggers a Sonarqube analysis. The
> analysis is also showing a report which can be verified, for example
> something like https://github.com/apache/camel/runs/57072611015:
> {code}
> Quality Gate failed
> Failed conditions
> 125 Security Hotspots
> 0.0% Coverage on New Code (required ≥ 80%)
> 12.7% Duplication on New Code (required ≤ 3%)
> E Reliability Rating on New Code (required ≥ A)
> See analysis details on SonarQube Cloud
> {code}
> This information is however overlooked as we don't receive it as a normal
> message. We may think to either use it during PR with a quality gate check or
> at least expect the information to be sent to contributors to be aware of the
> potential introduction of quality degradation or potential
> bugs/vulnerabilities.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
