feat: add propsector code analysis to CI run #1021
Conversation
vickywane
force-pushed
the
feat/static-code-analysis
branch
from
f404416 to
a4d884a
Compare
|
At this point, Prospector has been set up with a very minimal configuration and it stores the result using GitHub Action Artifacts. We can proceed to adjust its configuration to better suit the project. @paxcema Please review. |
There was a problem hiding this comment.
Hey @vickywane,
Looks like an interesting proposal. I think it's still missing a way for us to leverage this in an automated fashion when contributors open new pull requests, because I don't think this configuration goes beyond writing the report internally in the CI machines, is this correct? If so, then I think we need to figure out a way to achieve that before merging this.
|
Hello @paxcema -- Thanks for the response here. I agree with your thoughts on this. However, there is some unclarity on what exactly is being expected. One thing that I can think of is to paste the result of the CI run into the PR that is opened. ( Although this might result into noise within the PR) Do let me know what you think. |
Largely what the original issue states: a way for us to automatically trigger a bot in new PRs that offers static analysis (yes, will be noisy but should be fine as long as the report is actually useful to either/both maintainer and contributors). Prospector is a good choice. I think we can configure it to check for our current flake8 rules, plus anything else that makes sense and is easy to add. After that, the report should automatically be added to the PR discussion with an easy-to-read markdown format. And I think after the initial report, ideally a contributor would comment some special string to retrigger the check, though this may be too complicated and best left for a second PR. Does this make sense? |
|
Thank you for explaining @paxcema. I'll make an update to the setup. |
1 similar comment
|
Thank you for explaining @paxcema. I'll make an update to the setup. |
|
@paxcema I have made an update on this PR. Here are my updates:
|
There was a problem hiding this comment.
This is looking great @vickywane!
I'd say we can go ahead, merge and check how it behaves. @ZoranPandovski what do you think?
|
@vickywane while we wait for the other reviewer, I noticed the linting check is now throwing a lot of warnings, as if the flake8 configuration had been change in the linting step, as well. Any clues as to why that may be happening? It is a blocker for merging, I'm afraid. |
| @@ -0,0 +1 @@ | |||
| prospector==1.7.7 | |||
There was a problem hiding this comment.
Also, I don't think we need this right? The CI script manually installs it, anyway.
There was a problem hiding this comment.
Yes, it is installed in the gh action env
|
@vickywane any updates? Also, @ZoranPandovski it would be awesome if you can review this |
| @@ -0,0 +1,35 @@ | |||
| name: Static Code Analysis Of Codebase | |||
| on: [push, pull_request] | |||
There was a problem hiding this comment.
Maybe for now we can just run this on pull_request
| @@ -0,0 +1 @@ | |||
| prospector==1.7.7 | |||
There was a problem hiding this comment.
Yes, it is installed in the gh action env
|
Thanks @vickywane. Please just address the above two comments. |
|
Closing this for now. Feel free to reopen. |
This pull request will fix this issue.
This pull request adds Prospector as a static code analysis tool to run an analysis each time a PR is opened through the use of GitHub actions.