SQSCANGHA-146 Add proxy support for GPG keyserver access #327
This workflow is awaiting approval from a maintainer in #242
m4s-b3n
This workflow is awaiting approval from a maintainer in #242
qa-main.yml
on: pull_request
'scannerBinariesUrl' input with invalid URL
'scannerBinariesUrl' is escaped with curl so special chars are not injected in the download command
'scannerBinariesUrl' is escaped with wget so special chars are not injected in the download command
'scannerVersion' input
'scannerVersion' input validation
Analysis takes into account 'SONAR_ROOT_CERT'
Don't fail on Gradle project
Don't fail on Kotlin Gradle project
Don't fail on Maven project
curl performs redirect when scannerBinariesUrl returns 3xx
runAnalysisTest
runAnalysisWithCacheTest
truststore.p12 is updated when present
Matrix: 'args' input with command injection will fail
Waiting for pending jobs
Matrix: 'args' input
Waiting for pending jobs
Matrix: 'args' input with backticks injection does not execute command
Waiting for pending jobs
Matrix: 'args' input with dollar command injection does not execute command
Waiting for pending jobs
Matrix: No inputs
Waiting for pending jobs
Matrix: 'args' input with other command injection variants does not execute command
Waiting for pending jobs
Matrix: 'SONARCLOUD_URL' is used
Waiting for pending jobs
Matrix: 'projectBaseDir' input
Waiting for pending jobs
Matrix: 'RUNNER_DEBUG' is used
Waiting for pending jobs
Matrix: 'SONAR_ROOT_CERT' is converted to truststore
Waiting for pending jobs