Azure-pipelines-tasks: [Question] Is there a way to have SonarQube break build on PR when quality gate fails?

Hi @sinapis - this is in fact a SonarQube limitation - i.e. the quality gate is not calculated during PR builds. Please contact SonarSource, the company behind SonarQube with a feature request.

In a PR build we run the analysis in "issues mode", i.e. the analysis is not recorded in the SQ database and more importantly, the quality gate is NOT computed. The issues are written in a file which we process and then we inject them into the code review associated with the PR . Not running a full analysis during a PR is important because it would create too much noise in the tech debt trends and it has been suggested by the SonarSource team.

Thanks for the quick response!
In this case I'd like to request a feature - add something like approvalFeatureEnabled for https://github.com/mibexsoftware/sonar-bitbucket-plugin where build will break if blocking or critical issues exist.

Interesting. Please confirm I understand the scenarion - SonarQube pushed comments to the PR but the PR cannot be merged if messages arising from critical issues are still active ?

Yes, exactly (Just note that blocker issues are more severe than critical issues, so obviously they will block the merge as well). I actually think it would be best if the blocking severity could be configured by the user, but I can definitely live with blocking the merge for critical and blocker issues only.

I'll send this to the team that handles Pull Requests. Currently PR comments do not have priority and there is no API that I know of that allows to block a PR based on the comments in it. That being said we already have various branch policies, so maybe we could leverage one in this case.

Oh, and feel free to use the "smiley face" to send a smile / frown with your suggestions directly from VSTS. :)

Done!
How about breaking the build by the build task "SonarQube for MSBuild - End Analysis" when severe issues are found?

That's a good idea, I will add it to the backlog.

Hope I'm not resurrecting a dead post, though I might have a similar use-case where I would like to prevent PR merges if some blocker issues or a quality gate failures exist.

Since SonarQube 6.7, with sonar-scanner 3.0 (integrated with MSBuild), we were able to break builds on a quality gate failure, with the exception of builds triggered by a PR. (I'm aware that sonar-scanner runs on 'issues mode' in PR builds.) This allowed us to pinpoint what caused the issue and quickly address it, should a build break on a quality gate violation.

However we have recently updated our Sonar server to 7.0, as well as updating the SonarQube analysis build tasks to utilize sonar-scanner 4.0, and it seems that once again the ability to break builds on quality gate failures is removed - unfortunately, this was the single most utilized feature on our side that allowed us to prevent PR merges that would introduce new issues on our codebase.

Is there any way to achieve such functionality with SonarQube 7.0 and sonar-scanner 4.0, if so I would like to know. Any help or suggestion would be appreciated.

Hi @emre-aki, have a look at this extension :
https://github.com/SonarQubeCommunity/sonar-build-breaker