-
Notifications
You must be signed in to change notification settings - Fork 201
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add a static source code analyser to our GitHub Actions #1963
Comments
If there are no objections (looking @peternewman :D), I would install the SonarCloud app into the ola repository using my account and permissions. See: https://github.com/apps/sonarcloud |
This also goes along the lines of #1889 and #1890 which have been on the table for a bit. We should really get those reviewed/merged before considering more analysis otherwise the additional analysis may not result in improvements. My personal C++ stack currently contains:
|
As discussed during the PlugFest, OLA might benefit from running some kind of static code analysis.
While I'm perfectly open to alternatives, I do like how SonarQube / SonarCloud reports issues and there is GitHub Actions integration, including PR-annotation (as we currently do with codespell). Also, SonarCloud is free for Open Source projects:
(from https://www.sonarsource.com/open-source-editions/, FAQ entry "Are the products always free? ")
Thus, I would propose to enable SonarCloud integration for OLA.
The text was updated successfully, but these errors were encountered: