Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Static Analyzer (PHPStan) Integration #671

Open
wants to merge 5 commits into
base: master
Choose a base branch
from
Open

Static Analyzer (PHPStan) Integration #671

wants to merge 5 commits into from

Conversation

UlrichEckhardt
Copy link
Contributor

Greetings,

this PR integrates PHPStan into the Clockwork sources. The analyzer is automatically executed on every push using a Github action. As alternatives to PHPStan, there would be Psalm and perhaps SonarQube. I have worked with Psalm before and it works similarly to PHPStan. About SonarQube, I can't say much, but it seems to have a much larger scope. In particular, it provides a multi-language (not just PHP) framework and also includes support for making code reviews.

If you look at the README, there is a section on how to work with PHPStan, also the commit messages should contain some interesting context infos.

As for what drove me to develop this

  • It helps find bugs (two of them just recently fixed as byproducts from this integration).
  • It prevents regressions.
  • It gives the devs more time to work on the important stuff. ;)

Cheers!

Uli

@UlrichEckhardt UlrichEckhardt mentioned this pull request Feb 2, 2024
Open
@UlrichEckhardt UlrichEckhardt mentioned this pull request Feb 12, 2024
Closed
@UlrichEckhardt UlrichEckhardt force-pushed the feat/phpstan branch 4 times, most recently from 7df86c9 to 861d949 Compare February 24, 2024 16:00
@UlrichEckhardt UlrichEckhardt force-pushed the feat/phpstan branch 3 times, most recently from 659e30c to dbfeee5 Compare March 19, 2024 19:22
@UlrichEckhardt
Composer: Install PHPStan as dev-dependency
3bb9727 
Specifically that is
- phpstan/phpstan - the linter itself
- phpstan/extension-installer - convenience package for loading extensions
- spaze/phpstan-disallowed-calls - an extension that checks for some additional flaws
@UlrichEckhardt
PHPStan: Add configuration
0d013f1
@UlrichEckhardt
PHPStan: Add baseline
be06610 
The baseline lists the existing flaws that were found. This has two uses:
- We can use a high sensitivity for scanning, without having to fix all
  issues right away.
- It still prevents new issues from coming up and also tracks resolved
  issues.
@UlrichEckhardt
Github: Run PHPStan as action on every push
fe68a1a 
This should prevent regressions in code flaws detected by PHPStan. Also,
PHPStan complains when the baseline is not advanced after fixing a flaw.
This should prevent a flaw from reappearing later on.
@UlrichEckhardt
README.md: Add a section on PHPStan use
e701ccb
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@UlrichEckhardt