review: Use official qodana github action

[MartinWitt]

Like ever enterprise project, the developers make horrible decisions at someday and remove the usability.
The Qodana action no longer supports the options we gave it. We need to provide these options as a single string. This is a result of the change in the action using Qodana CLI. Qodana only gave a warning in the log for this behavior, and the last runs since this change could have produced wrong results.
Maybe someone with more advanced YAML skills has a solution for this hideous long string?

[slarse]

Don't remove the commit pins. Pinning on tag is not safe as they can move. But most prominently it leads to unexpected failures when devs introduce breaking changes and move tags to those.

[slarse]

Guessing this is just to trigger an error?

[MartinWitt]

Yes

[sonatype-lift]

UnusedMethod: Method 'deleteMe' is never used.

---

ℹ️ Learn about @sonatype-lift commands

You can reply with the following commands. For example, reply with @sonatype-lift ignoreall to leave out all findings.

Command	Usage
@sonatype-lift ignore	Leave out the above finding from this PR
@sonatype-lift ignoreall	Leave out all the existing findings from this PR
@sonatype-lift exclude <file|issue|path|tool>	Exclude specified file|issue|path|tool from Lift findings by updating your config.toml file

Note: When talking to LiftBot, you need to refresh the page to see its response.
_{Click here to add LiftBot to another repo.}

---

Was this a good recommendation?
[ 🙁 Not relevant ] - [ 😕 Won't fix ] - [ 😑 Not critical, will fix ] - [ 🙂 Critical, will fix ] - [ 😊 Critical, fixing now ]

[MartinWitt]

This ports Qodana to the new style. We fail the CI if any problems are found. If we see this is too strict, we can disable it.

[I-Al-Istannen]

I'd be happy to merge if you could quickly test whether it really fails the check. There were significant changes since the last time this was tested in this PR, if I did not miss anything.

[slarse]

@MartinWitt ☝️ conflict :o

I've been incredibly busy with other things for the past couple of weeks and feel a bit out of the loop, is there anything keeping us from merging this (except for the conflict)?

[I-Al-Istannen]

I've been incredibly busy with other things for the past couple of weeks and feel a bit out of the loop, is there anything keeping us from merging this (except for the conflict)?

Your guess is as good as mine, but I don't think so. I would really love to get this merged though, as the current pinned hash is now expired and qodana runs fail with:

This IDE build has expired. Please download a new build from JetBrains official site
✗  Qodana exited with code 7

See https://github.com/INRIA/spoon/actions/runs/3505578524/jobs/5871965639.

[MartinWitt]

I fixed the conflict. Shall I push some bad to showcase Qodana is working?

[I-Al-Istannen]

I fixed the conflict. Shall I push some bad to showcase Qodana is working?

I'd appreciate it :)

[MartinWitt]

@I-Al-Istannen CI is red as wanted.

[I-Al-Istannen]

Looks good to me :)

[slarse]

Looks like CI extra checks are failing as snapshots can't be fetched from OW2 repository :/

[I-Al-Istannen]

@slarse Fixed now, I think you can review/merge it. Your negative review is greying out the merge button — though I might be able to overrule you.

[slarse]

@I-Al-Istannen I'd be more comfortable if you merged as you were the last to look at it, I've approved so there shouldn't be any problems now.

[I-Al-Istannen]

I'd be more comfortable if you merged as you were the last to look at it, I've approved so there shouldn't be any problems now.

A wise decision, as qodana now failed on master :)

EDIT: Looking into github actions and the results here a bit more and checking with #4748, it seems to perform delta checks on PRs and full tests on master. So we probably just need to disable it on master and things should be alright. Neat.

[slarse]

A wise decision, as qodana now failed on master :)

Jackpot.