Uploaded image for project: 'Apache Fineract'
  1. Apache Fineract
  2. FINERACT-1483

Fix the top few issues which Sonar has identified, and then enable enforcement of Sonar?

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Blocker
    • Resolution: Fixed
    • None
    • 1.8.0
    • Security
    • None

    Description

      https://sonarcloud.io/summary/new_code?branch=develop&id=apache_fineract is interesting.

      While its 499 "Code Smells" would be a lot of work to trawl through,

      those 4 Bugs and 2 Security Hotspots it identified should just be hours (or a day or two) of work, not days or weeks.

      After someone has contributed fixes for those issues, then we could probably enable enforcement and make every Pull Request instead of only the master branch run a Sonar test, and fail the PRs if they introduce regressions? (It appears that currenlty Sonar only runs on the devel branch, which is not ideal IMHO.)

      FYI ptuomola and Fintecheando (victorromero vromero)

      Attachments

        Activity

          People

            Unassigned Unassigned
            vorburger Michael Vorburger
            Votes:
            1 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: