gilles/onvif-go
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
d13fdb0e0aa2df5b17e42ac75328c9ceb654a124
onvif-go/sonar-project.properties
T
0x524a 477a6c2927 chore: update CI workflows and SonarCloud configuration for enhanced security and coverage reporting 
- Updated SonarCloud exclusions to include CLI tools and examples for better security hotspot analysis.
- Added new issue exclusions for hardcoded IP addresses and credentials in test files and CLI tools.
- Upgraded various GitHub Actions to their latest versions for improved performance and security.
- Streamlined CI workflows by ensuring consistent usage of action versions across all jobs.
2025-12-02 23:08:47 -05:00

63 lines
2.3 KiB
Properties
Raw Blame History

sonar.projectKey=0x524a_onvif-go
sonar.organization=0x524a
# Project metadata
sonar.projectName=onvif-go
sonar.projectVersion=1.0.0
# Source code location
sonar.sources=.
sonar.exclusions=**/vendor/**,**/*_test.go,**/examples/**,**/cmd/**,**/testdata/**,**/testing/**
# Test settings
sonar.tests=.
sonar.test.inclusions=**/*_test.go
sonar.test.exclusions=**/vendor/**
# Go specific settings
sonar.go.coverage.reportPaths=coverage.out
sonar.go.tests.reportPaths=test-report.json
# Source encoding
sonar.sourceEncoding=UTF-8
# Coverage exclusions - exclude non-production code from coverage metrics
sonar.coverage.exclusions=**/cmd/**,**/examples/**,**/server/**,**/testing/**,**/testdata/**,**/*_test.go
# Duplications exclusions
sonar.cpd.exclusions=**/*_test.go,**/testdata/**
# Security Hotspot exclusions - skip test files, CI configuration, and CLI tools
# These files don't represent production security concerns
sonar.security.hotspots.exclusions=**/*_test.go,**/testing/**,**/testdata/**,**/.github/**,**/examples/**,**/cmd/**
# Issue exclusions for specific rules
sonar.issue.ignore.multicriteria=e1,e2,e3,e4,e5,e6,e7
# Ignore security issues in test files
sonar.issue.ignore.multicriteria.e1.ruleKey=go:S5042
sonar.issue.ignore.multicriteria.e1.resourceKey=**/*_test.go
# Ignore hardcoded credentials in test/example files (test credentials are expected)
sonar.issue.ignore.multicriteria.e2.ruleKey=go:S6418
sonar.issue.ignore.multicriteria.e2.resourceKey=**/*_test.go
sonar.issue.ignore.multicriteria.e3.ruleKey=go:S6418
sonar.issue.ignore.multicriteria.e3.resourceKey=**/examples/**
# Ignore hardcoded IP addresses in test files (test IPs like 192.168.x.x are expected)
sonar.issue.ignore.multicriteria.e4.ruleKey=go:S1313
sonar.issue.ignore.multicriteria.e4.resourceKey=**/*_test.go
# Ignore hardcoded IP addresses in CLI tools (example/default IPs for demos)
sonar.issue.ignore.multicriteria.e5.ruleKey=go:S1313
sonar.issue.ignore.multicriteria.e5.resourceKey=**/cmd/**
# Ignore hardcoded IP addresses in examples
sonar.issue.ignore.multicriteria.e6.ruleKey=go:S1313
sonar.issue.ignore.multicriteria.e6.resourceKey=**/examples/**
# Ignore hardcoded credentials in CLI tools (default/demo credentials)
sonar.issue.ignore.multicriteria.e7.ruleKey=go:S6418
sonar.issue.ignore.multicriteria.e7.resourceKey=**/cmd/**
Reference in New Issue View Git Blame Copy Permalink