Skip to content

SCANPY-219 Migrate shadow scan and iris tasks to github actions #264

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Seppli11 merged 2 commits into from
Oct 27, 2025
Merged

SCANPY-219 Migrate shadow scan and iris tasks to github actions #264

Seppli11 merged 2 commits into from
Oct 27, 2025

Conversation

@Seppli11
Copy link
Contributor

@Seppli11 Seppli11 commented Oct 24, 2025
edited by atlassian bot
Loading

@hashicorp-vault-sonar-prod hashicorp-vault-sonar-prod bot changed the title SCANPY-219 Migrate shadow scan and iris tasks to github actions SCANPY-219 Migrate shadow scan and iris tasks to github actions Oct 24, 2025
@Seppli11 Seppli11 force-pushed the SCANPY-219 branch 8 times, most recently from 7c63a01 to 80dbc2c Compare October 24, 2025 11:23
@sonarqube-cloud-us
Copy link

sonarqube-cloud-us bot commented Oct 24, 2025

SonarQube reviewer guide

Summary: Migrates IRIS synchronization from Cirrus CI to GitHub Actions workflow.

Review Focus: The new GitHub Actions workflow introduces a multi-stage pipeline with coverage generation, shadow scans, and IRIS sync. Pay attention to the job dependencies, permissions configuration, and the transition from custom bash scripts to reusable actions.

Start review at: .github/workflows/Iris.yml. This is the core of the change, replacing the deleted Cirrus script with a completely new GitHub Actions approach that restructures how IRIS analysis is executed.

💬 Please send your feedback

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@sonarqubecloud
Copy link

sonarqubecloud bot commented Oct 24, 2025
edited
Loading

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues
0 Dependency risks

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarQube Cloud

@Seppli11 Seppli11 force-pushed the SCANPY-219 branch 3 times, most recently from cd8ab68 to 71d52af Compare October 24, 2025 11:29
@Seppli11 Seppli11 requested a review from joke1196 October 24, 2025 11:29
@joke1196 joke1196 force-pushed the SCANPY-217 branch 14 times, most recently from 699e323 to 90073aa Compare October 24, 2025 13:02
@joke1196 joke1196 force-pushed the SCANPY-217 branch 13 times, most recently from 7f6428f to 0bb15a5 Compare October 27, 2025 08:27
joke1196
joke1196 approved these changes Oct 27, 2025
View reviewed changes
Copy link
Contributor

@joke1196 joke1196 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. We would need to rebase before merging.

.cirrus.yml

only_if: $CIRRUS_USER_COLLABORATOR == 'true' && $CIRRUS_TAG == "" && ($CIRRUS_PR != "" || $CIRRUS_BRANCH == 'master' || $CIRRUS_BRANCH =~ "branch-.*")

linux_container_definition: &LINUX_CONTAINER_DEFINITION
Copy link
Contributor

@joke1196 joke1196 Oct 27, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We can already get rid of this container definition.

Base automatically changed from SCANPY-217 to master October 27, 2025 08:55
@sonarqube-next
Copy link

sonarqube-next bot commented Oct 27, 2025

Quality Gate passed Quality Gate passed for 'Python Scanner'

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
0 Dependency risks
No data about Coverage
No data about Duplication

See analysis details on SonarQube

@Seppli11 Seppli11 merged commit a1b5504 into master Oct 27, 2025
16 checks passed
@Seppli11 Seppli11 deleted the SCANPY-219 branch October 27, 2025 10:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@joke1196 joke1196 joke1196 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Seppli11 @joke1196