$30 off During Our Annual Pro Sale. View Details »

RuboCop for Code Review

pocke
January 19, 2018
Programming
0
4.3k

RuboCop for Code Review

Code Review Meetup #1 https://connpass.com/event/75567/
https://docs.google.com/presentation/d/e/2PACX-1vQRTU7twM5Yv32YNvlEHeAb1JAhuJx2oZPrX6_aqXe0fEUooVEi64HFxFKXGbfR3DjtUUYSRmLX562z/pub?start=false&loop=false&delayms=3000

pocke

January 19, 2018
Tweet

More Decks by pocke

See All by pocke
Active Record Query Quiz
pocke
1
700
Let's write RBS!
pocke
1
3.6k
RBS and Rails, Present and Future
pocke
1
970
The newsletter of RBS updates
pocke
1
2.8k
kwargs warning → Sentry
pocke
0
200
Ruboty and SKI
pocke
0
120
Regression test for RuboCop
pocke
0
95
ruby-jp
pocke
1
1.6k
Suppress Warning
pocke
2
920

Other Decks in Programming

See All in Programming
アクセシビリティを理解するとフロントエンドのテストが楽になる!
nano72mkn
1
1.6k
From Spring Boot 2 to Spring Boot 3 with Java 21 and Jakarta EE
ivargrimstad
0
1.1k
Voicyの生放送リスナー画面で パフォーマンスチューニングした話
miyuki2203
0
100
Angular 17 - Rainaissance
gregonnet
0
130
ABEMA モバイルアプリにおける 「アーキテクチャ」 / ABEMA Mobile Architecture (CA.swift #18)
akkyie
1
240
B2B SaaSでSpringSecurityによる Roleを用いたユーザー権限設定の 実装について
rakus_dev
1
170
Gatlingによる負荷テスト入門
irof
6
530
君たちはどうプログラミングするか
tanakahisateru
5
610
Second-System Syndrome: A tale of power-assert
twada
PRO
9
3.4k
リーンスタートアップのリーンな品質の話
techouse
0
340
Organizational Pattern Hatching
koic
0
230
エンジニアだけでスポンサーブースを出したら大変なことになった
zakky21
1
330

Featured

See All Featured
Automating Front-end Workflow
addyosmani
1354
200k
Infographics Made Easy
chrislema
236
17k
We Have a Design System, Now What?
morganepeng
41
6.4k
Three Pipe Problems
jasonvnalue
89
9.3k
What’s in a name? Adding method to the madness
productmarketing
PRO
14
2.3k
A better future with KSS
kneath
230
16k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
17
1.4k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
219
21k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
352
21k
[Rails World 2023 - Day 1 Closing Keynote] - The Magic of Rails
eileencodes
1
870
How To Stay Up To Date on Web Technology
chriscoyier
780
250k
Adopting Sorbet at Scale
ufuk
66
8.2k

Transcript

  1. RuboCop for
    Code Review
    Code Review Meetup #1
    Jan. 19, 2018

    View Slide

  2. User.find(name: "pocke").inspect
    ● Masataka Kuwabara
    ● Engineer at Actcat, Inc. / SideCI
    ○ Rubyist, Gopher and Vimmer.
    ● RuboCop's core developer.
    ○ Today, I'll talk about RuboCop.

    View Slide

  3. Goal
    ● Improve code review with RuboCop.
    ● RuboCop is not a “Silver Bullet”.
    ○ When RuboCop reviews your code, you
    should review RuboCop's warnings.

    View Slide

  4. Note
    ● I’ll talk about Ruby today, but we
    can apply the practices to projects
    that is written in other languages.

    View Slide

  5. Agenda
    ● What's RuboCop?
    ● The internal of RuboCop
    ● RuboCop for Code Review

    View Slide

  6. Questions

    View Slide

  7. Questions
    ● Are you Rubyist?
    ● Do you know RuboCop?

    View Slide

  8. What's RuboCop?

    View Slide

  9. What's RuboCop?
    ● A static analyzer for Ruby.
    ● It has 3 type checks.
    ○ Style
    ○ Lint
    ○ Metrics

    View Slide

  10. Style
    Check coding style

    View Slide

  11. Style: check coding style
    ● White spaces
    ○ Indentation width
    ○ White spaces around brackets
    ● Syntax vs Method call
    ○ alias vs alias_method
    ○ for vs each

    View Slide

  12. Style checks based on one of the
    style guides.
    ● https://github.com/bbatsov/ruby-
    style-gudie
    ○ If your coding style has differences, you
    can configure RuboCop.

    View Slide

  13. Style: example
    # Use `def foo(arr)`
    def foo arr
    for x in arr # Use each
    bar # Bad indentation
    end
    end

    View Slide

  14. Lint
    Check bugs

    View Slide

  15. Lint: check bugs
    ● Unreachable code
    ● Debug code
    ● Unused variables
    ● etc...

    View Slide

  16. Lint: example
    def foo
    binding.irb # debug code
    return true
    # It’s never executed.
    puts 'hi'
    end

    View Slide

  17. Metrics
    Check complexity

    View Slide

  18. Metrics: check complexity
    ● ABC size
    ○ Assignment, Branches, Conditional
    ● Line length
    ● Class length
    ● etc...

    View Slide

  19. The internal of RuboCop

    View Slide

  20. How does RuboCop check code?
    ● RuboCop analyzes each file
    individually.
    ● RuboCop does not execute code.
    See “Writing Lint for Ruby” in RubyKaigi 2017.

    View Slide

  21. Analyzing each
    file individually

    View Slide

  22. Analyzing each file individually
    ● RuboCop does not check relations
    between files.
    ○ e.g. db/schema.rb and models.
    ● For simplicity and performance.
    ○ RuboCop can analyze parallelly.

    View Slide

  23. Do not execute
    code

    View Slide

  24. Do not execute code
    ● RuboCop doesn’t execute your
    code.
    ○ Pros: If your code has system('rm -rf
    /'), it does not remove.
    ○ Cons: RuboCop cannot understand
    application completely.
    ■ e.g. eval, method call

    View Slide

  25. RuboCop for Code Review

    View Slide

  26. RuboCop for Code Review
    ● What does “RuboCop for Code
    Review” mean?
    ● Advantage of RuboCop in Code
    Review.
    ● Action for RuboCop Review

    View Slide

  27. What does
    “RuboCop for
    Code Review”
    mean?

    View Slide

  28. What does “RuboCop for Code
    Review” mean?
    ● RuboCop also reviews your code.
    ○ Human Review + RuboCop Review

    View Slide

  29. How does RuboCop review
    ● rubocop $(git diff --name-only)
    before human review.
    ● I recommend using CI to run
    RuboCop.
    ○ e.g. SideCI, CodeClimate and
    Reviewdog.

    View Slide

  30. Advantages of
    RuboCop in
    review

    View Slide

  31. Advantages of RuboCop in
    review
    ● Reduce human reviews.
    ● Enhancement reviews.

    View Slide

  32. Reduce human reviews
    ● Layout and style reviews by
    human are no longer necessary.
    ○ e.g. “Remove the spaces”, “Use each
    method instead of for”.
    ○ It’s a RuboCop job, not a human job.

    View Slide

  33. Enhancement reviews
    ● RuboCop can find bugs that
    human will overlook.
    ○ Duplicate method definitions.
    ○ binding.irb(debug code)

    View Slide

  34. Action for
    RuboCop Review

    View Slide

  35. Action for RuboCop Review
    ● You should review “RuboCop
    Review”.

    View Slide

  36. Action for
    RuboCop Review
    For Style Reviews

    View Slide

  37. Action for Style Review
    ● Check your coding style.
    ○ If the review does not match with your
    coding style, you should configure or
    ignore the review.
    ○ http://rubocop.readthedocs.io/en/stabl
    e/

    View Slide

  38. Action for
    RuboCop Review
    For Lint Reviews

    View Slide

  39. Action for Lint Review
    ● Lint reviews has false positives.
    ○ In other words, Lint review has a
    mistake sometimes.
    ○ Because RuboCop does not know your
    application completely.
    ■ See the slides above.
    ● It is not a bug, it is a restriction.

    View Slide

  40. How to start and/or
    continue to use RuboCop?

    View Slide

  41. Start and/or continue to use
    RuboCop
    ● You can get knowledges from
    WEB+DB PRESS vol.102.
    ○ “RuboCopできれいで安全なコード”
    written by me.
    ○ http://amzn.asia/fZ9cgZO

    View Slide

  42. Conclusion

    View Slide

  43. Conclusion
    ● RuboCop is not a “Silver Bullet”.
    ○ In many cases, the default coding style
    doesn't match your coding style.
    ○ RuboCop has false positives.
    ○ So when RuboCop reviews your code,
    you should review RuboCop Review.

    View Slide