diff --git a/.github/actionlint.yaml b/.github/actionlint.yaml index 98b4f5d..1e8ad73 100644 --- a/.github/actionlint.yaml +++ b/.github/actionlint.yaml @@ -2,3 +2,4 @@ self-hosted-runner: labels: - github-ubuntu-latest-s + - sonar-xs diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 655b697..9476e7b 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -13,7 +13,9 @@ jobs: concurrency: group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }} cancel-in-progress: ${{ github.ref_name != github.event.repository.default_branch }} - runs-on: github-ubuntu-latest-s + runs-on: + group: sonar-dev + labels: sonar-xs name: Build permissions: id-token: write @@ -24,8 +26,9 @@ jobs: with: egress-policy: audit - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 - - uses: SonarSource/ci-github-actions/build-poetry@master # dogfood + - uses: SonarSource/ci-github-actions/build-poetry@feat/jcarsique/BUILD-11521-selfHostedRepox # dogfood with: + repox-url: https://repox.dev.sonar.build sonar-platform: sqc-eu deploy-pull-request: true provenance: 'true' @@ -36,7 +39,9 @@ jobs: concurrency: group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }} cancel-in-progress: ${{ github.ref_name != github.event.repository.default_branch }} - runs-on: github-ubuntu-latest-s + runs-on: + group: sonar-dev + labels: sonar-xs name: Promote permissions: id-token: write @@ -45,6 +50,7 @@ jobs: - uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0 with: egress-policy: audit - - uses: SonarSource/ci-github-actions/promote@master # dogfood + - uses: SonarSource/ci-github-actions/promote@feat/jcarsique/BUILD-11521-selfHostedRepox # dogfood with: + repox-url: https://repox.dev.sonar.build promote-pull-request: true