Open johannaengland opened 1 year ago
We should maybe consider switching to https://github.com/oxsecurity/megalinter as well - it appears to be a vastly improved and popular hard-fork of the super-linter. It appears to support ruff out of the box.
I had a look at it already and it seems very useful for our case. The only thing that I was uncertain about is if we can use it since it has the AGPL-3.0 license and Zino is under Apache 2.0. I am not well versed enough in licenses to know if that matters if we just use megalinter as a tool.
The license terms of megalinter will not affect Zino, as no Zino code will link with megalinter code.
It might also be interesting at this point to research how SonarQube's scans can be augmented with linter reports from
ruff
(which this project uses).I did pick up somewhere that SQ is supposed to be able to consolidate its own linting rules with reports from third party tools (PyLint was specifically mentioned, which is what NAV uses/used to use), and I would very much like to get this to work for all our projects at some point.
Originally posted by @lunkwill42 in https://github.com/Uninett/zino/issues/3#issuecomment-1534202028