From c3266c71307e80ef3edcb582a243738929ee7c10 Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 03:23:50 +0530 Subject: [PATCH 01/18] Create sonarcloud.yml --- .github/workflows/sonarcloud.yml | 67 ++++++++++++++++++++++++++++++++ 1 file changed, 67 insertions(+) create mode 100644 .github/workflows/sonarcloud.yml diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml new file mode 100644 index 00000000..07701bef --- /dev/null +++ b/.github/workflows/sonarcloud.yml @@ -0,0 +1,67 @@ +# This workflow uses actions that are not certified by GitHub. +# They are provided by a third-party and are governed by +# separate terms of service, privacy policy, and support +# documentation. + +# This workflow helps you trigger a SonarCloud analysis of your code and populates +# GitHub Code Scanning alerts with the vulnerabilities found. +# Free for open source project. + +# 1. Login to SonarCloud.io using your GitHub account + +# 2. Import your project on SonarCloud +# * Add your GitHub organization first, then add your repository as a new project. +# * Please note that many languages are eligible for automatic analysis, +# which means that the analysis will start automatically without the need to set up GitHub Actions. +# * This behavior can be changed in Administration > Analysis Method. +# +# 3. Follow the SonarCloud in-product tutorial +# * a. Copy/paste the Project Key and the Organization Key into the args parameter below +# (You'll find this information in SonarCloud. Click on "Information" at the bottom left) +# +# * b. Generate a new token and add it to your Github repository's secrets using the name SONAR_TOKEN +# (On SonarCloud, click on your avatar on top-right > My account > Security +# or go directly to https://sonarcloud.io/account/security/) + +# Feel free to take a look at our documentation (https://docs.sonarcloud.io/getting-started/github/) +# or reach out to our community forum if you need some help (https://community.sonarsource.com/c/help/sc/9) + +name: SonarCloud analysis + +on: + push: + branches: [ "main" ] + pull_request: + branches: [ "main" ] + workflow_dispatch: + +permissions: + pull-requests: read # allows SonarCloud to decorate PRs with analysis results + +jobs: + Analysis: + runs-on: ubuntu-latest + + steps: + - name: Analyze with SonarCloud + + # You can pin the exact commit or the version. + # uses: SonarSource/sonarcloud-github-action@v2.2.0 + uses: SonarSource/sonarcloud-github-action@4006f663ecaf1f8093e8e4abb9227f6041f52216 + env: + SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} # Generate a token on Sonarcloud.io, add it to the secrets of this repo with the name SONAR_TOKEN (Settings > Secrets > Actions > add new repository secret) + with: + # Additional arguments for the SonarScanner CLI + args: + # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) + # mandatory + -Dsonar.projectKey= + -Dsonar.organization= + # Comma-separated paths to directories containing main source files. + #-Dsonar.sources= # optional, default is project base directory + # Comma-separated paths to directories containing test source files. + #-Dsonar.tests= # optional. For more info about Code Coverage, please refer to https://docs.sonarcloud.io/enriching/test-coverage/overview/ + # Adds more detail to both client and server-side analysis logs, activating DEBUG mode for the scanner, and adding client-side environment variables and system properties to the server-side log of analysis report processing. + #-Dsonar.verbose= # optional, default is false + # When you need the analysis to take place in a directory other than the one from which it was launched, default is . + projectBaseDir: . From 18d0f9641e9d5a743f7a7f39eb7b9c972063127b Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 03:29:38 +0530 Subject: [PATCH 02/18] Update sonarcloud.yml --- .github/workflows/sonarcloud.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml index 07701bef..c206ca0e 100644 --- a/.github/workflows/sonarcloud.yml +++ b/.github/workflows/sonarcloud.yml @@ -55,8 +55,8 @@ jobs: args: # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) # mandatory - -Dsonar.projectKey= - -Dsonar.organization= + -Dsonar.projectKey= sonar + -Dsonar.organization= d90de042cf5b8507c5180bdf4b81136b1ac741ca # Comma-separated paths to directories containing main source files. #-Dsonar.sources= # optional, default is project base directory # Comma-separated paths to directories containing test source files. From 0e158c75b25863a8aa9984188dcd27cb7e94a0cb Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 03:39:09 +0530 Subject: [PATCH 03/18] Update sonarcloud.yml --- .github/workflows/sonarcloud.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml index c206ca0e..5ed210fd 100644 --- a/.github/workflows/sonarcloud.yml +++ b/.github/workflows/sonarcloud.yml @@ -49,7 +49,7 @@ jobs: # uses: SonarSource/sonarcloud-github-action@v2.2.0 uses: SonarSource/sonarcloud-github-action@4006f663ecaf1f8093e8e4abb9227f6041f52216 env: - SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} # Generate a token on Sonarcloud.io, add it to the secrets of this repo with the name SONAR_TOKEN (Settings > Secrets > Actions > add new repository secret) + SONAR_TOKEN: ${{ secrets.GITHUB_TOKEN}} # Generate a token on Sonarcloud.io, add it to the secrets of this repo with the name SONAR_TOKEN (Settings > Secrets > Actions > add new repository secret) with: # Additional arguments for the SonarScanner CLI args: From 16d8a48334f8b294ad59b429e49a7bb5410f2c5e Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 03:47:21 +0530 Subject: [PATCH 04/18] Update sonarcloud.yml --- .github/workflows/sonarcloud.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml index 5ed210fd..9fbb9420 100644 --- a/.github/workflows/sonarcloud.yml +++ b/.github/workflows/sonarcloud.yml @@ -55,8 +55,8 @@ jobs: args: # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) # mandatory - -Dsonar.projectKey= sonar - -Dsonar.organization= d90de042cf5b8507c5180bdf4b81136b1ac741ca + -Dsonar.projectKey= Akshay kumar + -Dsonar.organization= akshayk69 # Comma-separated paths to directories containing main source files. #-Dsonar.sources= # optional, default is project base directory # Comma-separated paths to directories containing test source files. From 6dcf101cf79ad928624170d353e7baed8a614ae6 Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 03:49:33 +0530 Subject: [PATCH 05/18] Update sonarcloud.yml --- .github/workflows/sonarcloud.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml index 9fbb9420..b405c1db 100644 --- a/.github/workflows/sonarcloud.yml +++ b/.github/workflows/sonarcloud.yml @@ -55,8 +55,8 @@ jobs: args: # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) # mandatory - -Dsonar.projectKey= Akshay kumar - -Dsonar.organization= akshayk69 + -Dsonar.projectKey= akshayk69 + -Dsonar.organization= akshay kumar # Comma-separated paths to directories containing main source files. #-Dsonar.sources= # optional, default is project base directory # Comma-separated paths to directories containing test source files. From 314ce6cf0ed68a0a151905589d2638e527ba38ee Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 04:05:03 +0530 Subject: [PATCH 06/18] Update sonarcloud.yml --- .github/workflows/sonarcloud.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml index b405c1db..64ddaef1 100644 --- a/.github/workflows/sonarcloud.yml +++ b/.github/workflows/sonarcloud.yml @@ -55,7 +55,7 @@ jobs: args: # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) # mandatory - -Dsonar.projectKey= akshayk69 + -Dsonar.projectKey= akshayk69shhhsnbbssshhhshhdbndns -Dsonar.organization= akshay kumar # Comma-separated paths to directories containing main source files. #-Dsonar.sources= # optional, default is project base directory From b0efa20d50175f815c753db9f431c805f2f7ccda Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 04:06:58 +0530 Subject: [PATCH 07/18] Update sonarcloud.yml --- .github/workflows/sonarcloud.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml index 64ddaef1..50b752cc 100644 --- a/.github/workflows/sonarcloud.yml +++ b/.github/workflows/sonarcloud.yml @@ -55,8 +55,8 @@ jobs: args: # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) # mandatory - -Dsonar.projectKey= akshayk69shhhsnbbssshhhshhdbndns - -Dsonar.organization= akshay kumar + -Dsonar.akshayk69shhhsnbbssshhhshhdbndns + -Dsonar.akshay kumar # Comma-separated paths to directories containing main source files. #-Dsonar.sources= # optional, default is project base directory # Comma-separated paths to directories containing test source files. From 07b84900419160211463fbf0a7e229f5449309f4 Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 04:08:12 +0530 Subject: [PATCH 08/18] Update sonarcloud.yml --- .github/workflows/sonarcloud.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml index 50b752cc..90da85ff 100644 --- a/.github/workflows/sonarcloud.yml +++ b/.github/workflows/sonarcloud.yml @@ -56,7 +56,7 @@ jobs: # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) # mandatory -Dsonar.akshayk69shhhsnbbssshhhshhdbndns - -Dsonar.akshay kumar + -Dsonar.akshaykumar # Comma-separated paths to directories containing main source files. #-Dsonar.sources= # optional, default is project base directory # Comma-separated paths to directories containing test source files. From b345c0543b7a2e6b215dc359a4c7be4beb43f435 Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 04:39:55 +0530 Subject: [PATCH 09/18] Create sonar-project.properties --- sonar-project.properties | 14 ++++++++++++++ 1 file changed, 14 insertions(+) create mode 100644 sonar-project.properties diff --git a/sonar-project.properties b/sonar-project.properties new file mode 100644 index 00000000..2e951fbd --- /dev/null +++ b/sonar-project.properties @@ -0,0 +1,14 @@ +sonar.projectKey=Akshayk69_Akshayk69 +sonar.organization=akshayk69shhhsnbbssshhhshhdbndns + + +# This is the name and version displayed in the SonarCloud UI. +#sonar.projectName=Akshayk69 +#sonar.projectVersion=1.0 + + +# Path is relative to the sonar-project.properties file. Replace "\" by "/" on Windows. +#sonar.sources=. + +# Encoding of the source code. Default is default system encoding +#sonar.sourceEncoding=UTF-8 From ae1e69f437f46921b89882425c6e94703612708a Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 04:43:56 +0530 Subject: [PATCH 10/18] Update sonarcloud.yml --- .github/workflows/sonarcloud.yml | 18 +++++++++++++++--- 1 file changed, 15 insertions(+), 3 deletions(-) diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml index 90da85ff..1f9f3ef9 100644 --- a/.github/workflows/sonarcloud.yml +++ b/.github/workflows/sonarcloud.yml @@ -54,9 +54,21 @@ jobs: # Additional arguments for the SonarScanner CLI args: # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) - # mandatory - -Dsonar.akshayk69shhhsnbbssshhhshhdbndns - -Dsonar.akshaykumar + # + -sonar.projectKey=Akshayk69_Akshayk69 + -sonar.organization=akshayk69shhhsnbbssshhhshhdbndns + + +# This is the name and version displayed in the SonarCloud UI. +#sonar.projectName=Akshayk69 +#sonar.projectVersion=1.0 + + +# Path is relative to the sonar-project.properties file. Replace "\" by "/" on Windows. +#sonar.sources=. + +# Encoding of the source code. Default is default system encoding +#sonar.sourceEncoding=UTF-8 # Comma-separated paths to directories containing main source files. #-Dsonar.sources= # optional, default is project base directory # Comma-separated paths to directories containing test source files. From 5006f569dc783f43844209f6c25016cb7189361d Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 04:46:30 +0530 Subject: [PATCH 11/18] Update sonarcloud.yml --- .github/workflows/sonarcloud.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml index 1f9f3ef9..bf7c80df 100644 --- a/.github/workflows/sonarcloud.yml +++ b/.github/workflows/sonarcloud.yml @@ -55,8 +55,8 @@ jobs: args: # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) # - -sonar.projectKey=Akshayk69_Akshayk69 - -sonar.organization=akshayk69shhhsnbbssshhhshhdbndns + -Dsonar.projectKey=Akshayk69_Akshayk69 + -Dsonar.organization=akshayk69shhhsnbbssshhhshhdbndns # This is the name and version displayed in the SonarCloud UI. From bc8e492894ed6eff617a332a90794ce7704f931a Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 04:48:32 +0530 Subject: [PATCH 12/18] Create Build.yml --- .github/workflows/Build.yml | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) create mode 100644 .github/workflows/Build.yml diff --git a/.github/workflows/Build.yml b/.github/workflows/Build.yml new file mode 100644 index 00000000..10940ae4 --- /dev/null +++ b/.github/workflows/Build.yml @@ -0,0 +1,19 @@ +name: Build +on: + push: + branches: + - main + pull_request: + types: [opened, synchronize, reopened] +jobs: + sonarqube: + name: SonarQube + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1 + with: + fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis + - name: SonarQube Scan + uses: SonarSource/sonarqube-scan-action@fd88b7d7ccbaefd23d8f36f73b59db7a3d246602 # v6.0.0 + env: + SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} From 42bfa09869be93f3774e44c20ccb618340759c6d Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 04:52:19 +0530 Subject: [PATCH 13/18] Delete .github/workflows/sonarcloud.yml --- .github/workflows/sonarcloud.yml | 79 -------------------------------- 1 file changed, 79 deletions(-) delete mode 100644 .github/workflows/sonarcloud.yml diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml deleted file mode 100644 index bf7c80df..00000000 --- a/.github/workflows/sonarcloud.yml +++ /dev/null @@ -1,79 +0,0 @@ -# This workflow uses actions that are not certified by GitHub. -# They are provided by a third-party and are governed by -# separate terms of service, privacy policy, and support -# documentation. - -# This workflow helps you trigger a SonarCloud analysis of your code and populates -# GitHub Code Scanning alerts with the vulnerabilities found. -# Free for open source project. - -# 1. Login to SonarCloud.io using your GitHub account - -# 2. Import your project on SonarCloud -# * Add your GitHub organization first, then add your repository as a new project. -# * Please note that many languages are eligible for automatic analysis, -# which means that the analysis will start automatically without the need to set up GitHub Actions. -# * This behavior can be changed in Administration > Analysis Method. -# -# 3. Follow the SonarCloud in-product tutorial -# * a. Copy/paste the Project Key and the Organization Key into the args parameter below -# (You'll find this information in SonarCloud. Click on "Information" at the bottom left) -# -# * b. Generate a new token and add it to your Github repository's secrets using the name SONAR_TOKEN -# (On SonarCloud, click on your avatar on top-right > My account > Security -# or go directly to https://sonarcloud.io/account/security/) - -# Feel free to take a look at our documentation (https://docs.sonarcloud.io/getting-started/github/) -# or reach out to our community forum if you need some help (https://community.sonarsource.com/c/help/sc/9) - -name: SonarCloud analysis - -on: - push: - branches: [ "main" ] - pull_request: - branches: [ "main" ] - workflow_dispatch: - -permissions: - pull-requests: read # allows SonarCloud to decorate PRs with analysis results - -jobs: - Analysis: - runs-on: ubuntu-latest - - steps: - - name: Analyze with SonarCloud - - # You can pin the exact commit or the version. - # uses: SonarSource/sonarcloud-github-action@v2.2.0 - uses: SonarSource/sonarcloud-github-action@4006f663ecaf1f8093e8e4abb9227f6041f52216 - env: - SONAR_TOKEN: ${{ secrets.GITHUB_TOKEN}} # Generate a token on Sonarcloud.io, add it to the secrets of this repo with the name SONAR_TOKEN (Settings > Secrets > Actions > add new repository secret) - with: - # Additional arguments for the SonarScanner CLI - args: - # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) - # - -Dsonar.projectKey=Akshayk69_Akshayk69 - -Dsonar.organization=akshayk69shhhsnbbssshhhshhdbndns - - -# This is the name and version displayed in the SonarCloud UI. -#sonar.projectName=Akshayk69 -#sonar.projectVersion=1.0 - - -# Path is relative to the sonar-project.properties file. Replace "\" by "/" on Windows. -#sonar.sources=. - -# Encoding of the source code. Default is default system encoding -#sonar.sourceEncoding=UTF-8 - # Comma-separated paths to directories containing main source files. - #-Dsonar.sources= # optional, default is project base directory - # Comma-separated paths to directories containing test source files. - #-Dsonar.tests= # optional. For more info about Code Coverage, please refer to https://docs.sonarcloud.io/enriching/test-coverage/overview/ - # Adds more detail to both client and server-side analysis logs, activating DEBUG mode for the scanner, and adding client-side environment variables and system properties to the server-side log of analysis report processing. - #-Dsonar.verbose= # optional, default is false - # When you need the analysis to take place in a directory other than the one from which it was launched, default is . - projectBaseDir: . From a191614e089026152c0ed25940e351152c01225d Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 06:04:34 +0530 Subject: [PATCH 14/18] Update Build.yml --- .github/workflows/Build.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/Build.yml b/.github/workflows/Build.yml index 10940ae4..1fbd7c9a 100644 --- a/.github/workflows/Build.yml +++ b/.github/workflows/Build.yml @@ -17,3 +17,6 @@ jobs: uses: SonarSource/sonarqube-scan-action@fd88b7d7ccbaefd23d8f36f73b59db7a3d246602 # v6.0.0 env: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} + if: always() + + From ab92a62092a4717f63eb295ffd615e0b5fab1276 Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 06:05:22 +0530 Subject: [PATCH 15/18] Update Build.yml --- .github/workflows/Build.yml | 1 - 1 file changed, 1 deletion(-) diff --git a/.github/workflows/Build.yml b/.github/workflows/Build.yml index 1fbd7c9a..516bcf40 100644 --- a/.github/workflows/Build.yml +++ b/.github/workflows/Build.yml @@ -17,6 +17,5 @@ jobs: uses: SonarSource/sonarqube-scan-action@fd88b7d7ccbaefd23d8f36f73b59db7a3d246602 # v6.0.0 env: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} - if: always() From 77c031f775c02b82f96658f6c0d1531e4f708a0d Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 06:09:25 +0530 Subject: [PATCH 16/18] Create sonarcloud.yml --- .github/workflows/sonarcloud.yml | 67 ++++++++++++++++++++++++++++++++ 1 file changed, 67 insertions(+) create mode 100644 .github/workflows/sonarcloud.yml diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml new file mode 100644 index 00000000..7ffc8dd5 --- /dev/null +++ b/.github/workflows/sonarcloud.yml @@ -0,0 +1,67 @@ +# This workflow uses actions that are not certified by GitHub. +# They are provided by a third-party and are governed by +# separate terms of service, privacy policy, and support +# documentation. + +# This workflow helps you trigger a SonarCloud analysis of your code and populates +# GitHub Code Scanning alerts with the vulnerabilities found. +# Free for open source project. + +# 1. Login to SonarCloud.io using your GitHub account + +# 2. Import your project on SonarCloud +# * Add your GitHub organization first, then add your repository as a new project. +# * Please note that many languages are eligible for automatic analysis, +# which means that the analysis will start automatically without the need to set up GitHub Actions. +# * This behavior can be changed in Administration > Analysis Method. +# +# 3. Follow the SonarCloud in-product tutorial +# * a. Copy/paste the Project Key and the Organization Key into the args parameter below +# (You'll find this information in SonarCloud. Click on "Information" at the bottom left) +# +# * b. Generate a new token and add it to your Github repository's secrets using the name SONAR_TOKEN +# (On SonarCloud, click on your avatar on top-right > My account > Security +# or go directly to https://sonarcloud.io/account/security/) + +# Feel free to take a look at our documentation (https://docs.sonarcloud.io/getting-started/github/) +# or reach out to our community forum if you need some help (https://community.sonarsource.com/c/help/sc/9) + +name: SonarCloud analysis + +on: + push: + branches: [ "main" ] + pull_request: + branches: [ "main" ] + workflow_dispatch: + +permissions: + pull-requests: read # allows SonarCloud to decorate PRs with analysis results + +jobs: + Analysis: + runs-on: ubuntu-latest + + steps: + - name: Analyze with SonarCloud + + # You can pin the exact commit or the version. + # uses: SonarSource/sonarcloud-github-action@v2.2.0 + uses: SonarSource/sonarcloud-github-action@4006f663ecaf1f8093e8e4abb9227f6041f52216 + env: + SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} # Generate a token on Sonarcloud.io, add it to the secrets of this repo with the name SONAR_TOKEN (Settings > Secrets > Actions > add new repository secret) + with: + # Additional arguments for the SonarScanner CLI + args: + # Unique keys of your project and organization. You can find them in SonarCloud > Information (bottom-left menu) + # mandatory + -Dsonar.projectKey= akshayk69shhhsnbbssshhhshhdbndns + -Dsonar.organization= akshaykumar + # Comma-separated paths to directories containing main source files. + #-Dsonar.sources= # optional, default is project base directory + # Comma-separated paths to directories containing test source files. + #-Dsonar.tests= # optional. For more info about Code Coverage, please refer to https://docs.sonarcloud.io/enriching/test-coverage/overview/ + # Adds more detail to both client and server-side analysis logs, activating DEBUG mode for the scanner, and adding client-side environment variables and system properties to the server-side log of analysis report processing. + #-Dsonar.verbose= # optional, default is false + # When you need the analysis to take place in a directory other than the one from which it was launched, default is . + projectBaseDir: . From 9133b7f9d312a9e9f1e8630033de4da84d88354b Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 06:09:39 +0530 Subject: [PATCH 17/18] Create dependabot.yml --- .github/dependabot.yml | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 00000000..9e1a87f6 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,20 @@ +# Basic `dependabot.yml` file with +# minimum configuration for two package managers + +version: 2 +updates: + # Enable version updates for npm + - package-ecosystem: "npm" + # Look for `package.json` and `lock` files in the `root` directory + directory: "/" + # Check the npm registry for updates every day (weekdays) + schedule: + interval: "daily" + + # Enable version updates for Docker + - package-ecosystem: "docker" + # Look for a `Dockerfile` in the `root` directory + directory: "/" + # Check for updates once a week + schedule: + interval: "weekly" From 9d75f16a7c17c8e5c9f3c4f580b0d89c3c7ae654 Mon Sep 17 00:00:00 2001 From: Akshay Kumar <94836744+Akshayk69@users.noreply.github.com> Date: Sat, 16 May 2026 07:44:45 +0530 Subject: [PATCH 18/18] Add files via upload --- Build.yaml.txt | 30 ++++++++++++++++++++++++++++++ bulk-sponsorships-template (1).csv | 3 +++ 2 files changed, 33 insertions(+) create mode 100644 Build.yaml.txt create mode 100644 bulk-sponsorships-template (1).csv diff --git a/Build.yaml.txt b/Build.yaml.txt new file mode 100644 index 00000000..a732c4ae --- /dev/null +++ b/Build.yaml.txt @@ -0,0 +1,30 @@ +name: ci + +on: + push: + branches: + - "main" + +jobs: + docker: + runs-on: ubuntu-latest + steps: + - name: Checkout + uses: actions/checkout@v4 + - name: Log in to Docker Hub + uses: docker/login-action@v3 + with: + username: ${{ vars.DOCKER_USER }} + password: ${{ secrets.DOCKER_PAT }} + - name: Set up Docker Buildx + uses: docker/setup-buildx-action@v3 + with: + driver: cloud + endpoint: "akshayk69/njdhgb" + - name: Build and push + uses: docker/build-push-action@v6 + with: + tags: "${{ vars.DOCKER_USER }}/docker-build-cloud-demo:latest" + # For pull requests, export results to the build cache. + # Otherwise, push to a registry. + outputs: ${{ github.event_name == 'pull_request' && 'type=cacheonly' || 'type=registry' }} diff --git a/bulk-sponsorships-template (1).csv b/bulk-sponsorships-template (1).csv new file mode 100644 index 00000000..e2725708 --- /dev/null +++ b/bulk-sponsorships-template (1).csv @@ -0,0 +1,3 @@ +Maintainer username,Sponsorship amount in USD +maintainerUsername1,100 or $100 +maintainerUsername2,100 or $100