From 0acc4b62141cb5fea7a710d083213f8db558b2af Mon Sep 17 00:00:00 2001 From: Sebastian Zumbrunn Date: Tue, 3 Feb 2026 09:42:05 +0100 Subject: [PATCH 1/3] test --- .github/workflows/build.yml | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 07254e4c4..0e35d803a 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -6,9 +6,10 @@ on: - branch-* - dogfood-* workflow_dispatch: + pull_request: schedule: # Nightly build at 2 AM UTC for shadow analysis - - cron: '0 2 * * *' + - cron: '0 2 * * *' env: PYTHON_VERSION: 3.9.5 @@ -76,3 +77,5 @@ jobs: SONAR_TOKEN: ${{ fromJson(steps.secrets.outputs.vault).SONAR_TOKEN }} SONAR_HOST_URL: ${{ matrix.sonar_host_url }} SONAR_PROJECT_KEY: ${{ matrix.sonar_project_key }} + + \ No newline at end of file From efa443223ee43fb6084deed48e1b70f736781c51 Mon Sep 17 00:00:00 2001 From: Sebastian Zumbrunn Date: Tue, 3 Feb 2026 09:45:55 +0100 Subject: [PATCH 2/3] Migrate to common analysis action --- .github/workflows/build.yml | 34 ++++++++++------------------------ 1 file changed, 10 insertions(+), 24 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 0e35d803a..8b54a8002 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -31,20 +31,14 @@ jobs: matrix: include: - name: "Analysis on SonarQube NEXT" - sonar_token_path: "development/kv/data/next" - sonar_host_url: "https://next.sonarqube.com/sonarqube" - sonar_project_key: "org.sonarsource.python:python" - run_condition: "always" + sonarqube-instance: "next" + sonar-project-key: "org.sonarsource.python:python" - name: "Analysis on Sonarcloud.io" - sonar_token_path: "development/kv/data/sonarcloud" - sonar_host_url: "https://sonarcloud.io" - sonar_project_key: "SonarSource_sonar-python" - run_condition: "nightly" + sonarqube-instance: "sqc-eu" + sonar-project-key: "SonarSource_sonar-python" - name: "Analysis on SonarQube.us" - sonar_token_path: "development/kv/data/sonarqube-us" - sonar_host_url: "https://sonarqube.us" - sonar_project_key: "SonarSource_sonar-python" - run_condition: "nightly" + sonarqube-instance: "sqc-us" + sonar-project-key: "SonarSource_sonar-python" steps: - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 @@ -55,13 +49,6 @@ jobs: git sparse-checkout set stubs/sklearn git checkout - - name: Get sonar token - id: secrets - uses: SonarSource/vault-action-wrapper@v3 - with: - secrets: | - ${{ matrix.sonar_token_path }} token | SONAR_TOKEN; - - uses: jdx/mise-action@146a28175021df8ca24f8ee1828cc2a60f980bd5 # v3.5.1 with: version: 2025.12.12 @@ -72,10 +59,9 @@ jobs: run: rm -rf private - name: Analyze - run: bash ./.cirrus/analyze.sh - env: - SONAR_TOKEN: ${{ fromJson(steps.secrets.outputs.vault).SONAR_TOKEN }} - SONAR_HOST_URL: ${{ matrix.sonar_host_url }} - SONAR_PROJECT_KEY: ${{ matrix.sonar_project_key }} + uses: ./.github-commons/actions/analyze + with: + sonarqube-instance: ${{ matrix.sonarqube-instance }} + sonar-project-key: ${{ matrix.sonar-project-key }} \ No newline at end of file From 8ddd148bede95ff421aba44fc14d6d50f2146c2e Mon Sep 17 00:00:00 2001 From: Sebastian Zumbrunn Date: Tue, 3 Feb 2026 11:49:13 +0100 Subject: [PATCH 3/3] disable mise caching --- .github/workflows/build.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 8b54a8002..b1354f8d6 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -52,6 +52,7 @@ jobs: - uses: jdx/mise-action@146a28175021df8ca24f8ee1828cc2a60f980bd5 # v3.5.1 with: version: 2025.12.12 + cache: false env: MISE_ENV: test-and-analyze