[ https://issues.apache.org/jira/browse/FINERACT-1483?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17471178#comment-17471178 ]
Michael Vorburger commented on FINERACT-1483: --------------------------------------------- Oh, I see! I missed that. Just to track this, let's record here in this Jira issue where we're at? Right now, on [the Overall Code tab|https://sonarcloud.io/summary/overall?id=apache_fineract], it is: * 263 Reliability Bugs * > Fix the top few issues which Sonar has identified, and then enable > enforcement of Sonar? > ---------------------------------------------------------------------------------------- > > Key: FINERACT-1483 > URL: https://issues.apache.org/jira/browse/FINERACT-1483 > Project: Apache Fineract > Issue Type: Bug > Reporter: Michael Vorburger > Priority: Blocker > > https://sonarcloud.io/summary/new_code?branch=develop&id=apache_fineract is > interesting. > While its 499 "Code Smells" would be a lot of work to trawl through, > those 4 Bugs and 2 Security Hotspots it identified should just be hours (or a > day or two) of work, not days or weeks. > After someone has contributed fixes for those issues, then we could probably > enable enforcement and make every Pull Request instead of only the master > branch run a Sonar test, and fail the PRs if they introduce regressions? (It > appears that currenlty Sonar only runs on the devel branch, which is not > ideal IMHO.) > FYI [~ptuomola] and [~Fintecheando] ([~victorromero] [~vromero]) -- This message was sent by Atlassian Jira (v8.20.1#820001)