SonarCloud workflow and pull requests from forks #1463
-
|
Hi @derselbst, I noticed that the SonarCloud pull request decoration is somehow working in this repo also for pull requests from forks. Could you please tell me how you achieved this? :) I'm surprised a bit because, as far as I know, this should not normally work: workflows that were run using the |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
|
Uff, good question. I must admit now that you mention it, I am indeed surprised that it works. I have created the SONAR_TOKEN 5 years ago - I can't remember that I've done anything specific to make this work. It could be that back then there was somewhere a setting in Github that allowed secrets to be passed to PR build, which they have now removed from the UI but under the hood it's still working for backward compat... but maybe I'm simply confusing this with Azure DevOps. Apart from that I can only confirm that the SONAR_TOKEN is configured as a "normal" repository secret within the "Actions secrets and variables" section of this repo's settings. |
Beta Was this translation helpful? Give feedback.
-
|
Thank you! A mysterious situation :) |
Beta Was this translation helpful? Give feedback.
Uff, good question. I must admit now that you mention it, I am indeed surprised that it works. I have created the SONAR_TOKEN 5 years ago - I can't remember that I've done anything specific to make this work. It could be that back then there was somewhere a setting in Github that allowed secrets to be passed to PR build, which they have now removed from the UI but under the hood it's still working for backward compat... but maybe I'm simply confusing this with Azure DevOps. Apart from that I can only confirm that the SONAR_TOKEN is configured as a "normal" repository secret within the "Actions secrets and variables" section of this repo's settings.