feat(agents): Copilot scanner agent using the Nexus-bootstrap wrapper#12
Open
aksOps wants to merge 1 commit into
Open
feat(agents): Copilot scanner agent using the Nexus-bootstrap wrapper#12aksOps wants to merge 1 commit into
aksOps wants to merge 1 commit into
Conversation
…pper A GitHub-Copilot-CLI sibling of the existing sonar-scanner-copilot agent. Where the existing agent invokes the sonar-predictor skill, this one shells out to the wrapper added in #10 (scripts/sonar-cli.sh / scripts/sonar-cli.ps1) so it works in corporate / air-gapped setups where the dist + Java 21 must come from a Nexus mirror. Contract: - Scan-only; never edits code. - Reads SONAR_NEXUS_BASE from env; fails fast with an actionable message if unset (the wrapper would otherwise fail later with a less obvious error). - Writes the JSON report to .sonar-predictor/scan-<id>.json with a unique suffix so parallel scanner instances do not stomp each other's reports. - Returns exactly two things to the orchestrator: the report path and a one-line headline derived from a single jq pass. Drill-down is the orchestrator's job — the agent never dumps raw JSON into upstream context. - Runs on GPT-5-mini to keep the mechanical-scan path cheap. The bundled jq snippets were verified against a real scan.json against this repo (1 CRITICAL, 12 MAJOR, 14 MINOR, 3 INFO, 20 files, 85.14% coverage) — the headline and top-8 drill-down both render correctly.
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
A single-file addition:
agents/sonar-scanner-copilot-nexus.md— aGitHub-Copilot-CLI sibling of the existing
sonar-scanner-copilotagent. Where the existing agent invokes the
sonar-predictorskill,this one shells out to the wrapper added in #10
(
scripts/sonar-cli.sh/scripts/sonar-cli.ps1) so it works incorporate / air-gapped setups where the dist and Java 21 must come
from a Nexus mirror.
Contract
SONAR_NEXUS_BASEfrom env; fails fast with an actionablemessage if unset.
.sonar-predictor/scan-<id>.jsonwith aunique suffix so parallel scanner instances don't stomp each other.
and a one-line headline derived from a single
jqpass.Drill-down is the orchestrator's job — the agent never dumps raw
JSON into upstream context.
Differences vs the existing
sonar-scanner-copilotagentsonar-predictorskillscripts/sonar-cli.sh/.ps1bash, view, glob, skillbash, view, globSONAR_NEXUS_BASErequired.sonar-predictor/scan.jsonscan-<id>.jsonfor fan-out safetyTest plan
jqsnippets verified against a realscan.json:totals: BLOCKER=0 CRITICAL=1 MAJOR=12 MINOR=14 INFO=3 files=20 coverage=85.14%