cicd/sonarqube-scan-action
1
0
Fork 0
mirror of https://github.com/SonarSource/sonarqube-scan-action.git synced 2026-05-14 15:42:52 +03:00
Code Issues Packages Projects Releases Wiki Activity

SQSCANGHA-143 SubmitReview: Use Vault token (#238)

Browse Source
This commit is contained in:
Pavel Mikula
2026-04-29 11:16:25 +02:00
committed by GitHub
parent c7ee0f9df9
commit ca30b65f4e
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/workflows/SubmitReview.yml
+2 -2
View File
@@ -10,7 +10,6 @@ jobs:
runs-on: github-ubuntu-latest-s runs-on: github-ubuntu-latest-s
permissions: permissions:
id-token: write id-token: write
pull-requests: read
# For external PR, ticket should be moved manually # For external PR, ticket should be moved manually
if: | if: |
github.event.pull_request.head.repo.full_name == github.repository github.event.pull_request.head.repo.full_name == github.repository
@@ -21,10 +20,11 @@ jobs:
uses: SonarSource/vault-action-wrapper@v3 uses: SonarSource/vault-action-wrapper@v3
with: with:
secrets: | secrets: |
development/github/token/{REPO_OWNER_NAME_DASH}-jira token | GITHUB_TOKEN;
development/kv/data/jira user | JIRA_USER; development/kv/data/jira user | JIRA_USER;
development/kv/data/jira token | JIRA_TOKEN; development/kv/data/jira token | JIRA_TOKEN;
- uses: sonarsource/gh-action-lt-backlog/SubmitReview@v2 - uses: sonarsource/gh-action-lt-backlog/SubmitReview@v2
with: with:
github-token: ${{secrets.GITHUB_TOKEN}} github-token: ${{ fromJSON(steps.secrets.outputs.vault).GITHUB_TOKEN }}
jira-user: ${{ fromJSON(steps.secrets.outputs.vault).JIRA_USER }} jira-user: ${{ fromJSON(steps.secrets.outputs.vault).JIRA_USER }}
jira-token: ${{ fromJSON(steps.secrets.outputs.vault).JIRA_TOKEN }} jira-token: ${{ fromJSON(steps.secrets.outputs.vault).JIRA_TOKEN }}