...
Once code submissions have been made and a "+2" review has been received, authorized committers may then merge the change into a branch.
Sonar Results
Once code is merged and a Sonar job is run, the results of the scan should be checked to ensure that proper line coverage has been met and there are no major vulnerabilities detected. If there is a lack of coverage or vulnerabilities reported, they should be addressed, preferably immediately, though a bug could be entered to prioritize and track this required work.
Refer to the SonarReports section for more details.
JIRA Workflow (Delivered)
...
Comments regarding any testing that has been to this point or Sonar results observed or anything else of interest should be included.
Sonar Results
Once code is merged and a Sonar job is run, the results of the scan should be checked to ensure that proper line coverage has been met and there are no major vulnerabilities detected. If there is a lack of coverage or vulnerabilities reported, they should be addressed, preferably immediately, though a bug could be entered to prioritize and track this required work.
Refer to the SonarReports section for more details.
Build Jobs
Verify Jobs
The verify jobs are engaged when code is submitted to the repository in order to confirm builds wouldn't break due to the inclusion of the change.
...