Skip to content

Test BUILD-10215: standardize GitHub Actions output logging#84

Closed
bwalsh434 wants to merge 1 commit intomasterfrom
test-BUILD-10215-standardize-ghaction-output-logging
Closed

Test BUILD-10215: standardize GitHub Actions output logging#84
bwalsh434 wants to merge 1 commit intomasterfrom
test-BUILD-10215-standardize-ghaction-output-logging

Conversation

@bwalsh434
Copy link

@bwalsh434 bwalsh434 commented Mar 3, 2026

Summary

  • Point ci-github-actions references to BUILD-10215-standardize-ghaction-output-logging branch for testing
  • Tests the standardization of GitHub Actions output logging (::error and ::warning annotations)

Test plan

  • Verify build workflow runs successfully
  • Check that error/warning annotations appear correctly in the GitHub Actions UI

Note: This is a temporary test PR. Revert to @master after testing.

🤖 Generated with Claude Code

@bwalsh434 bwalsh434 requested a review from a team as a code owner March 3, 2026 23:36
Copilot AI review requested due to automatic review settings March 3, 2026 23:36
@hashicorp-vault-sonar-prod
Copy link

hashicorp-vault-sonar-prod bot commented Mar 3, 2026
edited by atlassian bot
Loading

BUILD-10215

Copilot AI reviewed Mar 3, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR temporarily repoints the repository’s build workflow to a test branch of SonarSource/ci-github-actions in order to validate standardized GitHub Actions output logging (e.g., ::error / ::warning annotations) in the UI.

Changes:

  • Update the build-poetry action reference to BUILD-10215-standardize-ghaction-output-logging.
  • Update the promote action reference to BUILD-10215-standardize-ghaction-output-logging.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

.github/workflows/build.yml
steps:
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
- uses: SonarSource/ci-github-actions/build-poetry@master # dogfood
- uses: SonarSource/ci-github-actions/build-poetry@BUILD-10215-standardize-ghaction-output-logging # dogfood
Copy link

Copilot AI Mar 3, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Using a mutable branch ref for an external action makes workflow runs non-reproducible and increases supply-chain risk (the referenced branch can move without any change in this repo). For testing, prefer pinning SonarSource/ci-github-actions to a specific commit SHA (or an immutable tag) and/or ensure this change is reverted before merging into the default branch.

Copilot uses AI. Check for mistakes.
.github/workflows/build.yml
contents: write
steps:
- uses: SonarSource/ci-github-actions/promote@master # dogfood
- uses: SonarSource/ci-github-actions/promote@BUILD-10215-standardize-ghaction-output-logging # dogfood
Copy link

Copilot AI Mar 3, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same concern here: referencing SonarSource/ci-github-actions/promote by a branch name is mutable and can change behavior over time without review in this repo. Pin to a commit SHA / immutable tag for the test run, and revert to the standard ref before merging.

Suggested change
- uses: SonarSource/ci-github-actions/promote@BUILD-10215-standardize-ghaction-output-logging # dogfood
- uses: SonarSource/ci-github-actions/promote@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # BUILD-10215-standardize-ghaction-output-logging

Copilot uses AI. Check for mistakes.
@bwalsh434 bwalsh434 mentioned this pull request Mar 3, 2026
Merged
@julien-carsique-sonarsource julien-carsique-sonarsource marked this pull request as draft March 4, 2026 14:28
@sonarqubecloud
Copy link

sonarqubecloud bot commented Mar 4, 2026

SonarQube reviewer guide

Review in SonarQube

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues
0 Dependency risks

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@bwalsh434 bwalsh434 closed this Mar 9, 2026
@bwalsh434 bwalsh434 deleted the test-BUILD-10215-standardize-ghaction-output-logging branch March 9, 2026 18:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

DO NOT MERGE

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@bwalsh434 @julien-carsique-sonarsource