Skip to content
/ sonar-api-getter Public

Utility for retrieving and combining paginated results from the Sonar APIs

License

MIT license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

pixee/sonar-api-getter

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
src/sonar_api_getter
src/sonar_api_getter
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
poetry.lock
poetry.lock
 
 
pyproject.toml
pyproject.toml
 
 

Repository files navigation

sonar-api-getter

Utility for retrieving and combining paginated results from the Sonar APIs

Overview

The Sonar API Getter is a utility for retrieving and combining paginated results from the Sonar APIs. Specifically, it is intended to retrieve Issues and Hotspots.

These APIs both have a limit of 500 results per page. This utility will retrieve all pages of results (up to the API max of 10000 results total) and combine them into a single JSON file that can be uploaded to Pixee for triage and remediation.

Requirements

This utility requires Python 3.10 or later.

Installation

From GitHub repository over SSH (recommended):

pip install git+ssh://[email protected]/pixee/sonar-api-getter

From GitHub repository over HTTPS:

pip install git+https://github.com/pixee/sonar-api-getter

Usage

Once installed, run the following command for a full list of options:

sonar-api-getter --help

To retrieve both hotspots and issues in a single combined result file, use the following command:

sonar-api-getter MyOrg_MyRepo

You'll see output like this:

Retrieved 2713 issues from 6 pages
Retrieved 98 hotspots from 1 pages
Results written to sonar_combined_MyOrg_MyRepo.json

To retrieve only hotspots, use the following command:

sonar-api-getter --hotspots-only MyOrg_MyRepo

To retrieve only issues, use the following command:

sonar-api-getter --issues-only MyOrg_MyRepo

By default files are saved to a file in the current working directory. An additional argument can be provided to specify the output file:

sonar-api-getter MyOrg_MyRepo my-project-results.json

Project ID

In order to retrieve issues or hotspots, the project ID must be provided. This can be found in the Sonar UI by navigating to the project and looking at the URL. The project ID is the last part of the URL, after the organization name and a colon. For example, in the URL https://sonarcloud.io/dashboard?id=MyOrg_MyRepo, the project ID is MyOrg_MyRepo. It can also be found by navigating to the Information tab of the project in the Sonar UI and finding the value under Project Key.

Authentication

Authentication with the Sonar API is provided via the SONAR_TOKEN environment variable. Tokens can be generated in the Sonar UI under My Account > Security, which is reached from the drop-down menu in the upper right-hand side of the UI. In SonarCloud, this can be found here.

To run the utility, set the SONAR_TOKEN environment variable with the token generated from the Sonar UI:

export SONAR_TOKEN=<your-sonar-token>

About

Utility for retrieving and combining paginated results from the Sonar APIs

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages