Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PR checks workflow fails on dependabot PRs because of missing secret #1610

Open
PavelSBorisov opened this issue Jan 24, 2025 · 1 comment
Open

PR checks workflow fails on dependabot PRs because of missing secret #1610

PavelSBorisov opened this issue Jan 24, 2025 · 1 comment
Assignees
@rbarker-dev @andrewb1269hg
Labels
github_actions Pull requests that update GitHub Actions code

Comments

@PavelSBorisov
Copy link
Member

PR checks workflow always fails on dependabot PRs because it's missing access to the SONAR_TOKEN secret:

Run sonarsource/sonarcloud-github-action@383f7e52eae3ab0510c3cb0e7d9d150bbaeab838
  with:
    projectBaseDir: .
  env:
    LC_ALL: C.UTF-8
    GITHUB_TOKEN: ***
    SONAR_TOKEN: 
...
Set the SONAR_TOKEN env variable.
@PavelSBorisov PavelSBorisov added the github_actions Pull requests that update GitHub Actions code label Jan 24, 2025
@andrewb1269hg
Copy link

I looked - there is an organization level SONAR_TOKEN in the hashgraph org. The token may be expired or we may need to implement a repo-level token for this to work correctly.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rbarker-dev rbarker-dev

@andrewb1269hg andrewb1269hg

Labels
github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@PavelSBorisov @rbarker-dev @andrewb1269hg