Upgrade to Pro — share decks privately, control downloads, hide ads and more …

効果的な静的解析の CI導入パターンを求めて / Great static analysis with CI

Yuichi Sugiyama
PRO
December 11, 2020
Technology
3
3.1k

効果的な静的解析の CI導入パターンを求めて / Great static analysis with CI

PHP Conference Japan 2020 での発表資料です。
https://phpcon.php.gr.jp/2020/
https://fortee.jp/phpcon-2020/proposal/e0fba818-b475-452d-9bae-b7eb6c80b889

ref.

静的解析の育て方: https://speakerdeck.com/oogfranz/how-to-make-your-static-analysis-strong

Using Feedback Loops to Boost Development Lifecycles: https://www.agileconnection.com/article/using-feedback-loops-boost-development-lifecycles

Psalm: https://psalm.dev/
Phan: https://github.com/phan/phan
PHPStan: https://github.com/phpstan/phpstan

GitHub API: https://docs.github.com/en/free-pro-team@latest/rest/overview/media-types#commits-commit-comparison-and-pull-requests

reviewdog: https://github.com/reviewdog/reviewdog

MASH meets GHIBLI JAZZ: https://youtu.be/ZEtTwGen3fI

Yuichi Sugiyama
PRO

December 11, 2020
Tweet

More Decks by Yuichi Sugiyama

See All by Yuichi Sugiyama
サイボウズ と Garoon と The PHP Foundation と 私 / Cybozu and Garoon and The PHP Foundation and me
oogfranz
PRO
1
250
可能な限り確実にmkdirを成功させるには / Make mkdir
oogfranz
PRO
0
220
サイボウズ #Garoon 開発チームの
「 完成度低いの歓迎LT大会 」 PHPerKaigi出張版 / Low quality LT in PHPerKaigi 2023
oogfranz
PRO
0
280
20年ものの巨大プロダクトをKubernetesに移行している話 後日談/Garoon on Kubernetes after talk
oogfranz
PRO
0
250
20年ものの巨大プロダクトをKubernetesに移行している話/Garoon on Kubernetes
oogfranz
PRO
0
210
PHPアプリケーションだってモニタリングしたい / Monitoring PHP application
oogfranz
PRO
1
400
Dev-meets-Ops
oogfranz
PRO
1
760
GitHub力の低い僕でも、
OSSコントリビュートできたワケ / GitHub Power
oogfranz
PRO
1
360
静的解析の育て方 / How to make your static analysis strong
oogfranz
PRO
3
2.3k

Other Decks in Technology

See All in Technology
Warningアラートを放置しない!アラート駆動でログやメトリックを自動収集する仕組みによる恩恵
mashiike
2
210
テスト版水平思考クイズ〜不具合から原因を想像しよう〜/xpjug2023
yoshitake_1201
1
120
Swift Package Mangerのバグを直した話
k_koheyi
2
160
今改めて見直してみるラズパイの真価
hamadakoji
1
180
20230929_SRE_NEXT_エラーバジェット運用までの取り組み-信頼性の低下に対するアクションを定義しよう / Let's define actions against unreliability
gonkun
1
380
ChatGPTを前に頭が真っ白を乗り越え人が答えることが困難な認知負荷MAXなタフクエスチョンをどんどん回答させてプロダクト価値を爆速探求するぞ/cognitive_load_question_and_chatgpt
moriyuya
2
340
Deploy web frontend apps with AWS CDK
tmokmss
1
120
プロダクトオーナーとしてSLOに向き合う 〜Mackerelチームの事例〜 / SRE NEXT 2023
tatsuru
PRO
0
140
サーバーレスで仮想待合室を作ろう! / Serverless Virtual Waiting Room
_kensh
3
1.2k
マネージャーのためのスクラムマスターのパフォーマンスを高めるTips集
kawagoi
0
160
Code Review Challenge: An example of a solution
line_developers
PRO
1
210
上流工程に挑戦!「俺の考えた最強サーバレス構成」が一瞬で敗北した件
kentosuzuki
2
140

Featured

See All Featured
Building Flexible Design Systems
yeseniaperezcruz
317
36k
RailsConf 2023
tenderlove
0
240
Designing for Performance
lara
601
66k
Faster Mobile Websites
deanohume
296
29k
Building Better People: How to give real-time feedback that sticks.
wjessup
349
18k
Building a Scalable Design System with Sketch
lauravandoore
453
31k
[Brighton Ruby 2023] The Magic of Rails
eileencodes
3
290
Design by the Numbers
sachag
272
18k
CSS Pre-Processors: Stylus, Less & Sass
bermonpainter
351
28k
Imperfection Machines: The Place of Print at Facebook
scottboms
257
12k
Build The Right Thing And Hit Your Dates
maggiecrowley
23
1.7k
4 Signs Your Business is Dying
shpigford
172
21k

Transcript

  1. ޮՌతͳ੩తղੳͷ
    CIಋೖύλʔϯΛٻΊͯ
    PHPConference 2020
    αΠϘ΢ζגࣜձࣾɹਿࢁ ༞Ұ
    @oogFranz
    #phpcon #track2

    View Slide

  2. Whoami
    • ਿࢁ ༞Ұ @oogFranz
    • αΠϘ΢ζ6೥໨ΤϯδχΞ
    • େاۀ޲͚άϧʔϓ΢ΣΞGaroon࡞ͬͯΔ
    • ෳۀδϟζϛϡʔδγϟϯ@MASHݭָஂ
    • ϦϞʔτϫʔΫͷӨڹͰ඘͕ੜ͑ͨ

    View Slide

  3. MASH meets GHIBLI JAZZ
    • https://youtu.be/ZEtTwGen3fI
    • δϒϦۂͷδϓγʔδϟζΞϨϯδCD
    • ੋඇ͓ങ͍ٻΊ͍ͩ͘͞ʂ

    View Slide

  4. αΠϘ΢ζ Garoon ͷද޲͖આ໌
    • େن໛޲͚ͷάϧʔϓ΢ΣΞ
    • ੜ࢈ੑɾνʔϜϫʔΫ޲্ͷࢧԉ

    View Slide

  5. αΠϘ΢ζ Garoon ͷཪଆઆ໌
    • PHPͱMySQLͰͰ͖ͯΔWebΞϓϦέʔγϣϯ
    • ։ൃ19೥໨
    • PHP͸ 4͔Β7.4ʹʢPHP 8.0Ҡߦ΋ਐΊͯͧ͘ʂʣ
    • PHPͷίʔυ͸180ສߦ͘Β͍

    View Slide

  6. αΠϘ΢ζ Garoon ͷཪଆઆ໌
    • PHPͱMySQLͰͰ͖ͯΔWebΞϓϦέʔγϣϯ
    • ։ൃ19೥໨
    • PHP͸ 4͔Β7.4ʹʢPHP 8.0Ҡߦ΋ਐΊͯͧ͘ʂʣ
    • PHPͷίʔυ͸180ສߦ͘Β͍

    ͳ͔ͳ͔ϨΨγʔʂ

    View Slide

  7. ϨΨγʔʹཱͪ޲͔͓͏ʂ
    ϨΨγʔίʔυΛ៉ྷʹͯ͠΍Δʂ
    ·ͣ͸طଘ࣮૷ΛΑ͘ಡΜͰΈΑ͏ʂ

    View Slide

  8. খੴʹͭ·ͣ͘
    ܕએݴ΋ PHPDoc΋ͳͯ͘ίʔυ͕௥͑ͳ͍ɻɻɻ
    Ҿ਺ʹΑͬͯ͸յΕΔϝιου͕͋Δɻɻɻ
    ͜͜ͷίʔυͣͬͱಡΜͰ͚ͨͲɺ
    ͦ΋ͦ΋୭΋ݺͼग़ͯ͠ͳ͍ɻɻɻʁ

    View Slide

  9. খੴʹͭ·ͣ͘
    ܕએݴ΋ PHPDoc΋ͳͯ͘ίʔυ͕௥͑ͳ͍ɻɻɻ
    Ҿ਺ʹΑͬͯ͸յΕΔϝιου͕͋Δɻɻɻ
    ͜͜ͷίʔυͣͬͱಡΜͰ͚ͨͲɺ
    ͦ΋ͦ΋୭΋ݺͼग़ͯ͠ͳ͍ɻɻɻʁ

    ຊ࣭తͳ໰୊ʢઃܭͳͲʣʹͨͲΓண͘લʹɺ
    খ͞ͳ໰୊͕ؾʹͳͬͯίʔυϦʔσΟϯά͕ਐ·ͳ͍

    View Slide

  10. ϨΨγʔʹཱͪ޲͔͏ɺͦͷؒʹ΋
    • ৽͍͠ίʔυ͕ͲΜͲΜ૿͍͑ͯ͘
    • طଘίʔυΛ౿ऻ͞ΕΔͷͰɺ
    ͭ·͖ͮ΍͍͢ίʔυ͕૿͑Δ
    • ϝϯόʔʹΑͬͯεΩϧࠩ΋͋Δ

    View Slide

  11. ϨΨγʔʹཱͪ޲͔͏ɺͦͷؒʹ΋
    • ৽͍͠ίʔυ͕ͲΜͲΜ૿͍͑ͯ͘
    • طଘίʔυΛ౿ऻ͞ΕΔͷͰɺ
    ͭ·͖ͮ΍͍͢ίʔυ͕૿͑Δ
    • ϝϯόʔʹΑͬͯεΩϧࠩ΋͋Δ

    খੴ͕૿͑ͳ͍Α͏ʹɺͤΊͯ৽نίʔυ͸៉ྷʹ͍ͨ͠

    View Slide

  12. খੴΛ·ͣर͏ɾখੴΛ૿΍͞ͳ͍
    • খ͍͞໰୊͕ଟ͍ͱখ͍͞໰୊Ͱؾ͕ࢄΔ
    • খ͍͞໰୊Λ͋Β͔͡ΊݮΒ͢ɾ૿΍͞ͳ͍
    ͜ͱͰΑΓॏେͳ໰୊ʹऔΓ૊Έ΍͘͢ͳΔ

    View Slide

  13. খੴΛ·ͣर͏ɾখੴΛ૿΍͞ͳ͍
    • খ͍͞໰୊͕ଟ͍ͱখ͍͞໰୊Ͱؾ͕ࢄΔ
    • খ͍͞໰୊Λ͋Β͔͡ΊݮΒ͢ɾ૿΍͞ͳ͍
    ͜ͱͰΑΓॏେͳ໰୊ʹऔΓ૊Έ΍͘͢ͳΔ
    ੩తղੳπʔϧΛ$*ʹ૊ΈೖΕΑ͏ʂ

    View Slide

  14. ࠓ೔ͷͬ͘͟Γ࿩
    • ੩తղੳͷ CI ΛΑ͘͢Δ࿩
    • CIࢹ఺த৺
    • ੩తղੳࣗମΛΑ͘͢Δ࿩΋աڈʹ͠·ͨ͠

    https://speakerdeck.com/oogfranz/how-to-make-your-static-analysis-strong

    View Slide

  15. ੩తղੳͱ͸ʁ
    • ίʔυΛ࣮ߦͤͣʹߦ͏ݕূ
    • ͭ·͖ͮͦ͏ͳখੴΛissueͱͯ͠ݟ͚ͭͯ͘ΕΔ
    • όάʹͳΓͦ͏ͳίʔυɺո͍͠ίʔυͷݕ஌
    • ʢ͍͍ͩͨʣૣ͍
    • ʢ͍͍ͩͨʣࣗಈԽ͕͠΍͍͢

    View Slide

  16. ͲΜͳখੴɾissueΛݟ͚ͭͯ͘ΕΔʁ
    • ܕͷෆ੔߹
    • ଘࡏ͠ͳ͍ϝιουͷݺͼग़͠
    • ഑ྻͰͳ͍஋ʢboolean, nullͳͲʣ΁ͷ഑ྻΞΫηε
    • ෆཁίʔυ

    View Slide


  17. ੲͷPHPʹ͋Γ͕ͪɺࣦഊͨ͠Βfalse

    View Slide


  18. ੲͷPHPʹ͋Γ͕ͪɺࣦഊͨ͠Βfalse
    falseʹͳ͍ͬͯΔͱɺҙਤͤͣ΍ΒΕΔ

    View Slide


  19. ੲͷPHPʹ͋Γ͕ͪɺࣦഊͨ͠Βfalse
    falseʹͳ͍ͬͯΔͱɺҙਤͤͣ΍ΒΕΔ
    ੩తղੳπʔϧ͕ڭ͑ͯ͘ΕΔʂ

    View Slide

  20. ςετ͕ͳ͍ϨΨγʔͰ΋
    • ੩తղੳπʔϧ͸ςετίʔυ͕ͳͯ͘΋ಋೖՄೳ
    • ϓϩμΫτʹʢ΄΅ʣΑΒͣɺಋೖՄೳ
    • ϨΨγʔϓϩμΫτ͸ԟʑʹͯ͠ςετίʔυ͕ͳ͍
    • ςετίʔυ͕ͳͯ͘΋όά΍໰୊Λݟ͚ͭΒΕΔ

    View Slide

  21. ςετ͕ͳ͍ϨΨγʔͰ΋
    • ੩తղੳπʔϧ͸ςετίʔυ͕ͳͯ͘΋ಋೖՄೳ
    • ϓϩμΫτʹʢ΄΅ʣΑΒͣɺಋೖՄೳ
    • ϨΨγʔϓϩμΫτ͸ԟʑʹͯ͠ςετίʔυ͕ͳ͍
    • ςετίʔυ͕ͳͯ͘΋όά΍໰୊Λݟ͚ͭΒΕΔ

    ੩తղੳπʔϧΛ$*ʹಋೖ͠Α͏ʂ

    View Slide

  22. Q. CIಋೖ͕ͳͥେࣄ͔ʁ

    View Slide

  23. Q. CIಋೖ͕ͳͥେࣄ͔ʁ
    • શϝϯόʔ͕࠷௿ݶͷΫΥϦςΟͰίʔυΛॻ͚Δ
    • ϑΟʔυόοΫϧʔϓ͕୹͘ͳΔ

    View Slide

  24. ϑΟʔυόοΫϧʔϓͱ͸ʁ
    • ΤϯδχΞɾϓϩμΫτͷԿΒ͔ͷ׆ಈʹɺ
    ϑΟʔυόοΫΛಘͯɺ੡඼ʹ൓ө͢ΔαΠΫϧ
    • e.g.
    • ੡඼ΛϦϦʔεͯ͠ސ٬ͷ൓ԠΛݟΔ
    • ॻ͍ͨίʔυΛϚχϡΞϧςετ͢Δ
    • ίʔυϨϏϡʔΛ͢Δ

    View Slide

  25. ϑΟʔυόοΫϧʔϓͷ֊૚
    IUUQTXXXBHJMFDPOOFDUJPODPNBSUJDMFVTJOHGFFECBDLMPPQTCPPTUEFWFMPQNFOUMJGFDZDMFTΑΓҾ༻

    View Slide

  26. ϑΟʔυόοΫϧʔϓͷ௕͞
    • ϑΟʔυόοΫ͸ૣ͚Ε͹ૣ͍΄Ͳྑ͍
    • ੩తղੳͷCI͸΋ͬͱ΋୹͍ϧʔϓͰ
    ϑΟʔυόοΫΛಘΒΕΔ
    • ίϛοτ୯ҐͰ੩తղੳͷ݁ՌΛϑΟʔυόοΫ͠Α͏

    View Slide

  27. ϑΟʔυόοΫͷ࣭
    • ͙͢ʹϑΟʔυόοΫ͕དྷΔͷͰϑΟʔυόοΫͷ࣭͕େࣄ
    • ཧղɺमਖ਼͸༰қʹ
    • ݟա͝͞Εͳ͍Α͏ʹ
    • ա৒ʹͳΒͳ͍Α͏ʹ
    • Ͱ΋ෆ଍͠ͳ͍Α͏ʹ

    View Slide

  28. ϑΟʔυόοΫͷ࣭
    • ͙͢ʹϑΟʔυόοΫ͕དྷΔͷͰϑΟʔυόοΫͷ࣭͕େࣄ
    • ཧղɺमਖ਼͸༰қʹ
    • ݟա͝͞Εͳ͍Α͏ʹ
    • ա৒ʹͳΒͳ͍Α͏ʹ
    • Ͱ΋ෆ଍͠ͳ͍Α͏ʹ

    $*ಋೖ͢Δ͚ͩͰ΋Ғ͍͕ɺ
    ϑΟʔυόοΫΛҙࣝͯ͠ಋೖ͠Α͏ʂ

    View Slide

  29. ΍ͬͯΈͨ

    View Slide

  30. Psalm
    • https://psalm.dev/
    • ʢͨͿΜʣαʔϜ /sάːm, sɑ:lm/ ͱൃԻ͢Δ
    • ࢍඒՎɺ੟Վɺࢻฤͱݴ͏ҙຯ
    • vimeo͕։ൃ
    • ઃఆϑΝΠϧ͸XML

    View Slide

  31. ਘৗ͡Όͳ͍issue਺

    View Slide

  32. ਘৗ͡Όͳ͍issue਺

    ղੳ݁ՌΛॖখදࣔͨ͠΋ͷʢҰ෦ʣ

    View Slide

  33. Phan
    • https://github.com/phan/phan
    • ʢͨͿΜʣϑΝϯ(/fan/)ͱൃԻ͢Δ
    • ར༻ʹphp-astͷ֦ு͕ඞཁ
    • ઃఆϑΝΠϧ͸PHPϑΝΠϧ
    • Etsyࣾͷ։ൃ͕ݩ

    View Slide

  34. ਘৗ͡Όͳ͍issue਺

    View Slide

  35. ਘৗ͡Όͳ͍issue਺
    ղੳ݁ՌΛॖখදࣔͨ͠΋ͷʢҰ෦ʣ

    View Slide

  36. ਘৗ͡Όͳ͍issue਺
    • ͦΕ·Ͱ੩తղੳͰอޢ͞Ε͍ͯͳ͍ίʔυ͸
    جຊతʹແ਺ͷissue͕ใࠂ͞ΕΔ
    • ·ͱ΋ʹऔΓ߹͏ͱ৺͕ંΕΔ

    View Slide

  37. ਘৗ͡Όͳ͍issue਺
    • ͦΕ·Ͱ੩తղੳͰอޢ͞Ε͍ͯͳ͍ίʔυ͸
    جຊతʹແ਺ͷissue͕ใࠂ͞ΕΔ
    • ·ͱ΋ʹऔΓ߹͏ͱ৺͕ંΕΔ

    େྔͷJTTVFΛ͍ͳͭͭ͠ɺ
    ੩తղੳͷϝϦοτΛಘΔ࢓૊Έ͕ඞཁ

    View Slide

  38. େྔͷissueʹཱͪ޲͔͏
    • ੩తղੳπʔϧʹ͸ಛఆͷissueΛແࢹ͢Δɺ
    ઃఆʢignore, suppressʣ͕༻ҙ͞Ε͍ͯΔ
    • ͜ΕΛར༻ͯ͠ΈΔ

    View Slide

  39. Psalm

    https://psalm.dev/docs/running_psalm/dealing_with_code_issues/#config-suppression

    View Slide

  40. Psalm

    https://psalm.dev/docs/running_psalm/dealing_with_code_issues/#config-suppression
    type="suppress"Ͱ ཈੍
    ϑΝΠϧ΍σΟϨΫτϦͱ͍ͬͨ୯ҐͰࢦఆՄೳ

    View Slide

  41. Phan

    View Slide

  42. Phan

    suppress_issue_typesͰࢦఆ

    View Slide

  43. PHPStan

    View Slide

  44. PHPStan
    • https://github.com/phpstan/phpstan
    • ݱঢ়ͰҰ൪ਓؾͷ੩తղੳπʔϧ
    • ઃఆϑΝΠϧ͸.neonͱ͍͏yamlͷΑ͏ͳϑΝΠϧ
    • pro൛͕͋ΔʢओʹWeb UIʣ

    View Slide

  45. PHPStan

    ΤϥʔϝοηʔδΛਖ਼نදݱͰࢦఆ
    ϑΝΠϧɾσΟϨΫτϦͰର৅Λࢦఆ

    View Slide

  46. ͻͱ·ͣsuppress
    • ੩తղੳͷCIΛಋೖ͢Δ͜ͱΛ࠷༏ઌ͢ΔͳΒ͋Γ
    • ͙͢ʹ࣏ͤͳ͍ΤϥʔΛ͢΂ͯಥͬࠐΊ͹ɺ
    CIͰΤϥʔʹͳΒͳ͘ͳΔ

    View Slide

  47. suppressͷ໰୊఺
    • suppressͷϧʔϧ͸େຯ͔ɺෳࡶʹͳΔɻ
    • େຯͳઃఆ͸ɺϓϩμΫτશମʹద༻͞ΕΔͨΊɺ
    ৽نͷίʔυͷ੩తղੳ͕ऑ·ͬͯ͠·͏
    • ෳࡶͳϧʔϧ͸ద༻ൣғͷमਖ਼ͳͲ͕ඇৗʹେม

    View Slide

  48. suppressϧʔϧͷϝϯςφϯε
    • suppress͞ΕΔൣғ͸গͳ͍ͨ͘͠
    • suppressͷϧʔϧ͸γϯϓϧʹ͍ͨ͠
    ʢର৅ϑΝΠϧɺσΟϨΫτϦɺͳͲʣ

    View Slide

  49. suppressϧʔϧͷϝϯςφϯε
    • suppress͞ΕΔൣғ͸গͳ͍ͨ͘͠
    • suppressͷϧʔϧ͸γϯϓϧʹ͍ͨ͠
    ʢର৅ϑΝΠϧɺσΟϨΫτϦɺͳͲʣ

    ࣗಈͰTVQQSFTTϧʔϧ͕ߋ৽͞ΕΔͱخ͍͠

    View Slide

  50. suppressϧʔϧͷϝϯςφϯε
    • suppress͞ΕΔൣғ͸গͳ͍ͨ͘͠
    • suppressͷϧʔϧ͸γϯϓϧʹ͍ͨ͠
    ʢର৅ϑΝΠϧɺσΟϨΫτϦɺͳͲʣ

    ࣗಈͰTVQQSFTTϧʔϧ͕ߋ৽͞ΕΔͱخ͍͠
    ੩తղੳπʔϧͷCBTFMJOF
    $*πʔϧͷΩϟογϡ
    ͷ૊Έ߹ΘͤͰղܾʂ

    View Slide

  51. baselineͷಋೖ
    • baseline:
    suppress ruleΛࣗಈੜ੒͢Δػೳ
    • طଘͷissueΛه࿥͠ɺ੩తղੳ࣌ʹ͸
    ه࿥͞ΕͨissueΛແࢹ͢Δ


    $ vendor/bin/psalm --save-baseline baseline.xml
    $ vendor/bin/phan --save-baseline baseline.php
    $ vendor/bin/phpstan analyse --generate-baseline phpstan-baseline.neon

    View Slide

  52. CIͷΩϟογϡ
    • GitHub Actions, CircleCIͱ͍ͬͨCIπʔϧʹ͸
    աڈͷδϣϒ΍ଞͷδϣϒͷσʔλΛΩϟογϡ͠ɺ
    ࠶ར༻͢Δ࢓૊Έ͕͋Δ
    • ΩʔͱϑΝΠϧΛࢦఆͯ͠อଘ
    • ΩʔΛ෦෼Ұகͯ͠औಘͤ͞Δ͜ͱͰɺ
    աڈͷδϣϒͷσʔλΛར༻Ͱ͖Δ

    View Slide

  53. উखʹڧ͘ͳΔ੩తղੳ
    1. ίϛοτͷͨͼʹɺbaselineΛར༻ͯ͠
    ੩తղੳΛ࣮ߦ͢Δ
    2. issue͕ͳ͚Ε͹ɺbaselineΛߋ৽͢Δ
    3. ࣍ͷίϛοτͰ͸৽͍͠baselineΛར༻ͯ͠ɺ
    ੩తղੳΛߦ͏

    View Slide

  54. উखʹڧ͘ͳΔ੩తղੳͷྫ
    • CircleCI + Phan ͷྫ
    • ଞͷCIπʔϧʢGitHub ActionsͳͲʣ΍
    ଞͷ੩తղੳπʔϧʢPHPStan, PsalmͳͲʣͰ΋
    Ԡ༻Մೳʢͷ͸ͣʣ

    View Slide

  55. baselineΛར༻ͯ͠੩తղੳ

    phan-load-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - restore_cache:
    name: Restore baseline
    keys:
    - v1-phan-baseline-{{ .BRANCH }}-
    - v1-phan-baseline-develop-
    - run:
    name: Phan
    command: |
    if [[ -f ~/phan_baseline.php ]]; then
    phan ./ --load-baseline ~/phan_baseline.php
    fi

    View Slide

  56. baselineΛར༻ͯ͠੩తղੳ

    phan-load-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - restore_cache:
    name: Restore baseline
    keys:
    - v1-phan-baseline-{{ .BRANCH }}-
    - v1-phan-baseline-develop-
    - run:
    name: Phan
    command: |
    if [[ -f ~/phan_baseline.php ]]; then
    phan ./ --load-baseline ~/phan_baseline.php
    fi
    CIʢCircleCIʣͷΩϟογϡ͔Β
    baselineΛऔಘ

    View Slide

  57. baselineΛར༻ͯ͠੩తղੳ

    phan-load-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - restore_cache:
    name: Restore baseline
    keys:
    - v1-phan-baseline-{{ .BRANCH }}-
    - v1-phan-baseline-develop-
    - run:
    name: Phan
    command: |
    if [[ -f ~/phan_baseline.php ]]; then
    phan ./ --load-baseline ~/phan_baseline.php
    fi
    ։ൃதϒϥϯνʹbaseline͕
    ͋Ε͹ͦΕΛར༻

    View Slide

  58. baselineΛར༻ͯ͠੩తղੳ

    phan-load-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - restore_cache:
    name: Restore baseline
    keys:
    - v1-phan-baseline-{{ .BRANCH }}-
    - v1-phan-baseline-develop-
    - run:
    name: Phan
    command: |
    if [[ -f ~/phan_baseline.php ]]; then
    phan ./ --load-baseline ~/phan_baseline.php
    fi
    ։ൃதϒϥϯνʹbaseline͕
    ͳ͚Ε͹developϒϥϯνΛར༻

    View Slide

  59. baselineΛར༻ͯ͠੩తղੳ

    phan-load-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - restore_cache:
    name: Restore baseline
    keys:
    - v1-phan-baseline-{{ .BRANCH }}-
    - v1-phan-baseline-develop-
    - run:
    name: Phan
    command: |
    if [[ -f ~/phan_baseline.php ]]; then
    phan ./ --load-baseline ~/phan_baseline.php
    fi
    ੩తղੳΛ࣮ߦʢ͜͜Ͱ͸Phanʣ

    View Slide

  60. baselineΛར༻ͯ͠੩తղੳ

    phan-load-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - restore_cache:
    name: Restore baseline
    keys:
    - v1-phan-baseline-{{ .BRANCH }}-
    - v1-phan-baseline-develop-
    - run:
    name: Phan
    command: |
    if [[ -f ~/phan_baseline.php ]]; then
    phan ./ --load-baseline ~/phan_baseline.php
    fi
    baseline͕ݟ͔ͭΒͳ͍࣌͸Skip

    View Slide

  61. baselineΛར༻ͯ͠੩తղੳ

    phan-load-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - restore_cache:
    name: Restore baseline
    keys:
    - v1-phan-baseline-{{ .BRANCH }}-
    - v1-phan-baseline-develop-
    - run:
    name: Phan
    command: |
    if [[ -f ~/phan_baseline.php ]]; then
    phan ./ --load-baseline ~/phan_baseline.php
    fi
    Ωϟογϡʹอଘ͞Ε͍ͯͨbaselineΛ
    ར༻ͯ͠੩తղੳΛ࣮ߦ

    View Slide

  62. baselineΛߋ৽͢Δ

    phan-save-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - run:
    name: Save Phan baseline
    command: |
    set +e
    phan ./ --save-baseline ~/phan_baseline.php
    exit 0
    - save_cache:
    key: v1-phan-baseline-{{ .BRANCH }}-{{ .Revision }}
    paths: ~/phan_baseline.php

    View Slide

  63. phan-save-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - run:
    name: Save Phan baseline
    command: |
    set +e
    phan ./ --save-baseline ~/phan_baseline.php
    exit 0
    - save_cache:
    key: v1-phan-baseline-{{ .BRANCH }}-{{ .Revision }}
    paths: ~/phan_baseline.php
    baselineΛߋ৽͢Δ

    baselineΛ࡞੒

    View Slide

  64. phan-save-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - run:
    name: Save Phan baseline
    command: |
    set +e
    phan ./ --save-baseline ~/phan_baseline.php
    exit 0
    - save_cache:
    key: v1-phan-baseline-{{ .BRANCH }}-{{ .Revision }}
    paths: ~/phan_baseline.php
    baselineΛߋ৽͢Δ

    ੩తղੳπʔϧʹΑͬͯ͸issue͕ଘࡏ͢Δ
    ͱऴྃίʔυ͕1Λฦ͢ͷͰέΞ͕ඞཁ

    View Slide

  65. phan-save-baseline:
    docker:
    - image: docker-registory.cybozu.private/phan:X.Y.Z
    steps:
    - checkout
    - run:
    name: Save Phan baseline
    command: |
    set +e
    phan ./ --save-baseline ~/phan_baseline.php
    exit 0
    - save_cache:
    key: v1-phan-baseline-{{ .BRANCH }}-{{ .Revision }}
    paths: ~/phan_baseline.php
    baselineΛߋ৽͢Δ

    baselineΛΩϟογϡʹอଘ

    View Slide

  66. baselineͷϦηοτ
    • ੩తղੳπʔϧͷόʔδϣϯΞοϓͳͲͰ
    baselineΛϦηοτ͍͕ͨ࣌͋͠Δ
    • ΩϟογϡͷΩʔ໊Λมߋ͢Δ

    - save_cache:
    key: v1-phan-baseline-{{ .BRANCH }}-{{ .Revision }}
    paths: ~/phan_baseline.php
    - save_cache:
    key: v2-phan-baseline-{{ .BRANCH }}-{{ .Revision }}
    paths: ~/phan_baseline.php
    ΩϟογϡΩʔ໊Λߋ৽͢Δ

    View Slide

  67. ੩తղੳ͕উखʹڧ͘ͳΔʂ

    View Slide

  68. ΋ͬͱ੩తղੳΛΑ͍ͨ͘͠ʂ

    View Slide

  69. • ϑΟʔυόοΫΛվળ͢Δ

    ͞ΒʹνʔϜͷ੩తղੳମݧΛΑ͘͢ΔTips
    ཧղ༰қʹ͢Δ
    ϑΟʔυόοΫΛૣ͘͢Δ
    ݎ࿚ʹ͢Δ

    View Slide

  70. • ϑΟʔυόοΫΛվળ͢Δ

    ͞ΒʹνʔϜͷ੩తղੳମݧΛΑ͘͢ΔTips
    ཧղ༰қʹ͢Δ
    ϑΟʔυόοΫΛૣ͘͢Δ
    ݎ࿚ʹ͢Δ

    View Slide

  71. ੩తղੳʹ͔͔Δ࣌ؒΛ୹͘͢Δ
    • CIͰ஗͍ͱ͜ΖʢϘτϧωοΫʣΛվળ͢Δ
    • ϑΟʔυόοΫϧʔϓ͸ૣ͚Ε͹ૣ͍΄Ͳྑ͍
    • GaroonͰ͸
    • git clone
    • ੩తղੳͷ࣮ߦ
    • ͕஗͔ͬͨ

    View Slide

  72. git cloneΛૣ͘͢Δ
    • ௕͘։ൃ͍ͯ͠ΔϓϩμΫτͰ͸git clone͕஗͍
    • →shallow cloneΛ͢Δʢ࠷৽ίϛοτ͚ͩऔಘ͢Δʣ
    • Garoonͩͱ໿6ഒૣ͘ͳΔʢ25.2 ඵ → 4.0 ඵʣ

    $ git clone --depth=1 --branch ${CIRCLE_BRANCH} \
    --single-branch ${CIRCLE_REPOSITORY_URL}

    View Slide

  73. ੩తղੳʹ͔͔Δ࣌ؒΛ୹͘͢Δ
    • ࠩ෼ͷ͋ͬͨϑΝΠϧ͚ͩ੩తղੳΛ͔͚Δ
    • →shallow cloneΛ͍ͯ͠Δͱ git diff ͕Ͱ͖ͳ͍
    • ผͷํ๏ͰdiffΛऔಘ͢Δ
    • →GitHub ͷϓϧϦΫऔಘ APIΛ࢖͏

    View Slide

  74. ϓϧϦΫऔಘ GitHub API

    $curl -H "Authorization: token ${GITHUB_API_TOKEN}" \
    -H 'Accept: application/vnd.github.v3.diff' \

    https://github.dev.cybozu.co.jp/api/v3/repos/garoon/garoon/pulls/14386
    diff --git a/source/page/master/sample.php b/source/page/master/sample.php
    index b644b6edbf5..03624413a6a 100644
    --- a/source/page/master/sample.php
    +++ b/source/page/master/sample.php
    @@ -1,3 +1,4 @@
    +echo "diff test"

    View Slide

  75. ϓϧϦΫऔಘ GitHub API

    $curl -H "Authorization: token ${GITHUB_API_TOKEN}" \
    -H 'Accept: application/vnd.github.v3.diff' \

    https://github.dev.cybozu.co.jp/api/v3/repos/garoon/garoon/pulls/14386
    diff --git a/source/page/master/sample.php b/source/page/master/sample.php
    index b644b6edbf5..03624413a6a 100644
    --- a/source/page/master/sample.php
    +++ b/source/page/master/sample.php
    @@ -1,3 +1,4 @@
    +echo "diff test"
    media typeͷࢦఆͰdiff͕औΕΔ
    https://docs.github.com/en/free-pro-team@latest/rest/overview/media-types#commits-commit-comparison-and-pull-requests

    View Slide


  76. $curl -H "Authorization: token ${GITHUB_API_TOKEN}" \
    -H 'Accept: application/vnd.github.v3.diff' \

    https://github.dev.cybozu.co.jp/api/v3/repos/garoon/garoon/pulls/14386
    diff --git a/source/page/master/sample.php b/source/page/master/sample.php
    index b644b6edbf5..03624413a6a 100644
    --- a/source/page/master/sample.php
    +++ b/source/page/master/sample.php
    @@ -1,3 +1,4 @@
    +echo "diff test"
    ࡶʹ +++ ͱϑΝΠϧ֦ுࢠΛgrep͢Ε͹ɺ
    ੩తղੳର৅ͷϑΝΠϧ͕औಘͰ͖Δ
    https://docs.github.com/en/free-pro-team@latest/rest/overview/media-types#commits-commit-comparison-and-pull-requests
    ϓϧϦΫऔಘ GitHub API

    View Slide

  77. ੩తղੳʹ͔͔Δ࣌ؒΛ୹͘͢Δ
    • Phan͸ͦ΋ͦ΋ಛఆϑΝΠϧͷΈͷ෼ੳ͕Ͱ͖ͳ͍
    • Psalm͸cacheDirectoryΛࢦఆͯ͠ɺ
    ࣮ߦ݁ՌΛΩϟογϡɺ--diff ΦϓγϣϯΛ࢖͏ํ͕ྑͦ͞͏
    • PHPStan΍PHP Code Sniffer (ίʔσΟϯάن໿ͷνΣοΫ
    πʔϧ)Ͱ༗ޮ

    View Slide

  78. • ϑΟʔυόοΫΛվળ͢Δ

    ͞ΒʹνʔϜͷ੩తղੳମݧΛΑ͘͢ΔTips
    ཧղ༰қʹ͢Δ
    ϑΟʔυόοΫΛૣ͘͢Δ
    ݎ࿚ʹ͢Δ

    View Slide

  79. ൃੜͨ͠issueΛΘ͔Γ΍͘͢͢Δ
    • CIʹΤϥʔϝοηʔδΛಡΈʹ͍͘ͷ͸ΊΜͲ͍͘͞

    View Slide

  80. reviewdog

    • issueͷग़ͨͱ͜ΖʹࣗಈͰίϝϯτΛ͚ͭͯ͘ΕΔ
    https://github.com/reviewdog/reviewdog

    View Slide

  81. reviewdog

    • issueͷग़ͨͱ͜ΖʹࣗಈͰίϝϯτΛ͚ͭͯ͘ΕΔ
    https://github.com/reviewdog/reviewdog
    GitHub EnterpriseͰ͸API token͕ඞཁ
    APIൃߦऀͷΞΠίϯ͕ग़ΔͷͰ
    νʔϜϝϯόʔ͔ΒݏΘΕ΍͍͢

    View Slide

  82. botΞΧ΢ϯτ
    • ਓʹ௚઀ౖΒΕΔΑΓ͸ɺbotʹౖΒΕΔํ͕·ͩϚγ
    • botΞΧ΢ϯτΛ࡞ͬͯӡ༻͍ͯ͠Δ
    • GitHubͩͱɺreviewdogͷΞΠίϯ͕ॻ͖ࠐΜͰ͘ΕΔͷͰ҆৺

    View Slide

  83. • ϑΟʔυόοΫΛվળ͢Δ

    ͞ΒʹνʔϜͷ੩తղੳମݧΛΑ͘͢ΔTips
    ཧղ༰қʹ͢Δ
    ϑΟʔυόοΫΛૣ͘͢Δ
    ݎ࿚ʹ͢Δ

    View Slide

  84. issueΛϝΠϯϒϥϯνʹऔΓࠐ·ͳ͍
    • GitHub ͷ Branch protection rulesΛ͔ͭ͏

    View Slide

  85. issueΛϝΠϯϒϥϯνʹऔΓࠐ·ͳ͍
    • GitHub ͷ Branch protection rulesΛ͔ͭ͏

    CIͷνΣοΫΛϚʔδલʹඞਢʹ͢Δ

    View Slide

  86. issueΛϝΠϯϒϥϯνʹऔΓࠐ·ͳ͍
    • GitHub ͷ Branch protection rulesΛ͔ͭ͏

    ඞਢͷCIδϣϒΛબͿ

    View Slide

  87. issueΛϝΠϯϒϥϯνʹऔΓࠐ·ͳ͍
    • GitHub ͷ Branch protection rulesΛ͔ͭ͏

    ඞਢͷCIδϣϒΛબͿ

    View Slide

  88. issueΛϝΠϯϒϥϯνʹऔΓࠐ·ͳ͍
    • GitHub ͷ Branch protection rulesΛ͔ͭ͏

    ඞਢͷCIδϣϒΛબͿ
    $*͕௨Βͳ͍ͱϚʔδͰ͖ͳ͍ʂ

    View Slide

  89. ·ͱΊ
    • ੩తղੳͷCIಋೖͰϨΨγʔʹཱͪ޲͔͓͏ʂ
    • ϑΟʔυόοΫϧʔϓΛҙࣝͯ͠ɺCIΛಋೖ͠Α͏ʂ
    • baselineͰ੩తղੳͷϝϯςφϯείετΛԼ͛Α͏ʂ
    • খٕΛͨ͘͞Μ࢖ͬͯɺ੩తղੳͷମݧΛΑ͘͠Α͏ʂ

    View Slide