Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Heartless code review

rejasupotaro
August 15, 2015
Technology
2
400

Heartless code review

rejasupotaro

August 15, 2015
Tweet

More Decks by rejasupotaro

See All by rejasupotaro
Challenges in Search in Global Services
rejasupotaro
2
3.4k
ML on Mobile DroidKaigi 2018
rejasupotaro
3
7.5k
Managing tasks to Kotlin
rejasupotaro
1
150
Go Global - #CookpadTechconf 2017
rejasupotaro
8
7.5k
Successful Locali(z)(s)ation - Droidcon Berlin 2016
rejasupotaro
5
1.2k
Collecting logs from mobile apps
rejasupotaro
0
170
Inside Kotlin
rejasupotaro
0
39
Improving UX through performance Droidcon Italy
rejasupotaro
38
9.8k
Think about API orchestration with RxJava
rejasupotaro
9
2.3k

Other Decks in Technology

See All in Technology
Profiling a Java Application @DevDays 2023
victorrentea
1
520
AIシステム開発におけるQA/QA in AI System development
mineo_matsuya
3
950
Security-JAWS#29 AWS Summit Tokyo 2023 オンデマンド配信を楽しむためのセキュリティ関連トピックご紹介
kthrtty
1
200
10x More Effective Sprint Review for the Agile Team
eiki
0
110
全AWSエンジニアに捧ぐ、CloudWatch 設計・運用 虎の巻 / CloudWatch design and operation bible
iselegant
7
640
CyberAgent AI事業本部MLOps研修応用編
nsakki55
33
16k
初学者が1ヶ月ほどAWS CDKを勉強してみた - AWS CDK Conference Japan 2023
sakaguchi
0
590
データマイニングと機械学習-K近傍法 & 機械学習のお作法
trycycle
0
170
Serverless Framework ユーザーが CDK に引っ越しして感じたハードルについて言語化してみる
hassaku63
0
730
ChatGPTがもたらす新しいチーム開発の現場
satoshirobatofujimoto
0
150
Save the state
keithyokoma
0
170
Road to RubyKaigi Speaker (case sue445) #rubykaigi2023_after
sue445
PRO
0
390

Featured

See All Featured
Three Pipe Problems
jasonvnalue
89
9.1k
Writing Fast Ruby
sferik
613
58k
It's Worth the Effort
3n
178
26k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
239
19k
The Art of Programming - Codeland 2020
erikaheidi
37
11k
Code Review Best Practice
trishagee
52
12k
Robots, Beer and Maslow
schacon
154
7.5k
The Language of Interfaces
destraynor
149
21k
In The Pink: A Labor of Love
frogandcode
133
21k
Side Projects
sachag
450
38k
Faster Mobile Websites
deanohume
296
29k
The Invisible Customer
myddelton
113
12k

Transcript

  1. Heartless code review
    @rejasupotaro

    View Slide

  2. Why should we do
    code reviews?

    View Slide

  3. We are doing code reviews to
    * improve code quality
    * improve UX
    * share knowledge

    View Slide

  4. Problem of human code review
    * Depending on the skill
    * Depending on the mood of the day

    View Slide

  5. It seems that code quality
    can be checked automatically
    * Improve code quality
    * Improve UX
    * Share knowledge

    View Slide

  6. Code bad smell detection
    * Correctness
    * Bad practice
    * Malicious code vulnerability
    * Performance

    View Slide

  7. Use
    static analysis tools

    View Slide

  8. static analysis tools
    for Java
    * PMD
    * Checkstyle
    * FindBugs
    * Infer

    View Slide

  9. PMD & Checkstyle

    View Slide

  10. Use formatter

    View Slide

  11. You can setup formatter
    with 1 command
    * Square: ./install.sh
    * Cookpad: curl -L "https://raw.githubusercontent.com/cookpad/android-code-style/
    master/.idea/codeStyleSettings.xml" > .idea/codeStyleSettings.xml

    View Slide

  12. FindBugs
    Find 420+ types of bug
    Super powerful!
    Some reports are too strict
    (= false-positive)
    for Android

    View Slide

  13. developed by Facebook
    written in OCaml
    Infer
    A tool to detect bugs in Android and iOS app
    before they ship

    View Slide

  14. looks
    WIP

    View Slide

  15. I chose FindBugs
    Let’s look more closely

    View Slide

  16. FindBugs is bundled
    with Gradle

    View Slide

  17. Just add `apply plugin: findbugs`

    View Slide

  18. findbugs {
    toolVersion = "2.0.1"
    sourceSets = [sourceSets.main]
    ignoreFailures = true
    reportsDir = file("$project.buildDir/findbugsReports")
    effort = "max"
    reportLevel = "high"
    visitors = ["FindSqlInjection", "SwitchFallthrough"]
    omitVisitors = ["FindNonShortCircuit"]
    includeFilter = file(“$rootProject.projectDir/…/includeFilter.xml”)
    excludeFilter = file(“$rootProject.projectDir/…/excludeFilter.xml”)
    }
    All properties have sensible defaults

    View Slide

  19. $ ./gradlew findbugs

    View Slide

  20. Many warnings

    View Slide

  21. Look report closely

    View Slide

  22. BuildConfig.class

    R$anim.class
    R$attr.class
    R$bool.class
    R$color.class
    R$dimen.class
    R$drawable.class
    R$id.class

    Code analyzed:

    View Slide

  23. TopActivity$$ViewBinder.class
    SearchResultActivity$$ViewBinder.class
    RecipeDetailActivity$$ViewBinder.class
    PhotoReportActivity$$ViewBinder.class
    ProfileActivity$$ViewBinder.class
    LoginActivity$$ViewBinder.class
    SettingsActivity$$ViewBinder.class

    We don’t need to analyse these classes…

    View Slide

  24. Worthless indication
    makes engineers unmotivated

    View Slide

  25. Exclude
    Include
    write exclude-filter to keep engineer’s motivation

    View Slide



  26. exclude.xml

    View Slide









  27. exclude.xml

    View Slide

  28. ClassName$InnerClassName.class

    ClassName$$Lambda$1.class
    ClassName$$Lambda$2.class
    ClassName$$Lambda$3.class
    ClassName$$Lambda$4.class
    ClassName$$Lambda$5.class
    ClassName$$Lambda$6.class
    ClassName$$Lambda$7.class

    View Slide










  29. exclude.xml

    View Slide











  30. exclude.xml

    View Slide

  31. AlertDialog dialog = new AlertDialog.Builder(context)
    .setMessage(R.string.message)
    .setPositiveButton(R.string.ok, new DialogInterface.OnClickListener() {
    @Override
    public void onClick(DialogInterface dialog, int which) {

    }
    })
    .setNegativeButton(R.string.cancel, new DialogInterface.OnClickListener() {
    @Override
    public void onClick(DialogInterface dialog, int which) {

    }
    })
    .show();
    Bug type: SIC_INNER_SHOULD_BE_STATIC_ANON

    View Slide

  32. Bug type: UPM_UNCALLED_PRIVATE_METHOD

    View Slide

  33. Bug type: URF_UNREAD_FEILD

    View Slide











  34. exclude.xml

    View Slide

  35. →Filter→

    View Slide

  36. Nothing is changed
    if you just look a result
    Call to action

    View Slide

  37. Use review tool

    View Slide

  38. View Slide

  39. View Slide

  40. Dokumi
    notify
    Pull Request
    CI Server
    run dokumi
    comment
    xcodebuild
    infer
    FindBugs
    Oh, I have to fix it!

    View Slide

  41. You can setup this system in 30 minutes!

    View Slide

  42. Advantage
    * Save the time of code review
    * Keep code high quality
    * Focus on essential problem

    View Slide

  43. Bots say harsh things
    to keep code quality high
    Human praise reviewee
    to motivate team members

    View Slide

  44. Thank you!
    @rejasupotaro

    View Slide