feat: implement shellcheck lints in command blocks (#191) #264
Conversation
|
There's still a lot of testing and polishing to do, which will undoubtedly reveal some issues, but I wanted to open for comments before I went any further in case I'm way off from what's desired. |
| const SHELLCHECK_BIN: &str = "shellcheck"; | ||
|
|
||
| /// shellcheck lints that we want to suppress | ||
| const SHELLCHECK_SUPPRESS: &[&str] = &[ |
There was a problem hiding this comment.
This is a copy-paste of miniwdl's list. I think we can remove most of these since most were added to work around their use of dummy literals, which we're not (currently) doing.
There was a problem hiding this comment.
Yeah I think this is good for now. It would be nice to make these configurable in the future. Perhaps you could add a TODO comment above it and/or an issue when this is merged?
There was a problem hiding this comment.
Not perfect, but users can add #shellcheck disable= directives right into the comment of a command section. Or use SHELLCHECK_OPTS to globally disable.
| const SHELLCHECK_BIN: &str = "shellcheck"; | ||
|
|
||
| /// shellcheck lints that we want to suppress | ||
| const SHELLCHECK_SUPPRESS: &[&str] = &[ |
There was a problem hiding this comment.
Yeah I think this is good for now. It would be nice to make these configurable in the future. Perhaps you could add a TODO comment above it and/or an issue when this is merged?
wdl-lint/tests/lints/deprecated-placeholder-options-v1.1/source.errors
Outdated
Show resolved
Hide resolved
thatRichman
force-pushed
the
feat/shellcheck-lint-command-blocks
branch
from
958e222 to
8474ebd
Compare
wdl-lint/src/rules/shellcheck.rs
Outdated
| "ShellCheck (https://shellcheck.net) is a static analysis tool and linter for sh / bash. \ | ||
| The lints provided by ShellCheck help prevent common errors and \ | ||
| pitfalls in your scripts. Following its recommendations will increase \ | ||
| the robustness of your command sections." |
There was a problem hiding this comment.
Just want to say good job writing this explanation() text. I think it's spot on 👍
thatRichman
force-pushed
the
feat/shellcheck-lint-command-blocks
branch
from
759c7f4 to
6f792a2
Compare
thatRichman
force-pushed
the
feat/shellcheck-lint-command-blocks
branch
2 times, most recently
from
b76e234 to
f2506be
Compare
|
Rebased. Gauntlet in arena mode is giving me the following: so I'll look into that tomorrow. |
|
@thatRichman do you think you can figure out how to install Feel free to ping me on Zulip if that poses any issues! I imagine the windows runner could pose a challenge 🤔 |
@a-frantz Sure, shouldn't be too bad. Shellcheck provides a pre-built windows binary that we can pull from their releases. Might just take a little fiddling. |
|
@a-frantz Here's a link to an example of a new install-shellcheck action running on my fork. One thing to note is Ubuntu being Ubuntu only has 0.8.0 by default. macOS and Windows will always run latest. Maybe a good thing to be testing across versions. But if we want to forego the apt caching we could just pull from GH the same as Windows. edit: it's also suspicious that Arena passed on Windows when the duplicate diagnostic bug was still present. Makes me think it probably isn't finding the executable. |
wdl-lint/src/util.rs
Outdated
| @@ -24,6 +34,22 @@ pub fn is_inline_comment(token: &Comment) -> bool { | |||
| false | |||
| } | |||
|
|
|||
| /// Determines if a string containing embedded quotes is properly quoted. | |||
There was a problem hiding this comment.
| /// Determines if a string containing embedded quotes is properly quoted. | |
| /// Determines whether or not a string containing embedded quotes is properly quoted. |
My two cents: let's just always pull from latest on everything (including Mac). It makes it a bit more straightforward to maintain the Github action associated with that, and it also ensures that every platform always works with the bleeding edge Shellcheck. |
|
I'm starting to see why the miniwdl folks went with literals instead of variables / expansions when substituting placeholders. The common false positives I'm seeing from Arena are: caused by: because we're replacing both of these placeholders with double-quoted expansions. and SC2001 caused by: because with a bash variable you can use the suggested syntax but that obviously doesn't apply to WDL placeholders. as well as SC2066: caused by: Though, this one is also basically identical to one that miniwdl has to suppress. I've found (what I think) is an elegant solution to determine whether to use a literal or expansion, which reduces but does not eliminate false positives. That being said, I think miniwdl's approach of guessing the placeholder's type and using an appropriate literal would be overly complicated here. So I think it comes down to the severity and frequency of the lints we end up needing to suppress. I still think (with the commit I'm about to push) that we're better off than always using literals. We could probably spend weeks working to get the false positives to an absolute minimum without suppressing anything, but that feels a bit bikesheddy to me. Of course I will defer. |
So am I. However with I'm thinking we shouldn't expend a large amount of effort eliminating these false positives with the current AST-based implementation. @thatRichman can you remove this rule from the default set of rules (as Clay originally suggested) so that this is opt-in only? We should re-architect |
|
Sounds good. I'll disable the shellcheck-install action (once I get it working on all OSes) so that it be re-enabled at a later date. I know the intent is to support non-default rules in sprocket eventually, but should I put any work into supporting non-default rules in the dev CLI in this PR? Seems OOS, so happy to throw in an issue if there isn't one already. Also, I think I will wait for the resolution of #268 before making any final changes to this PR, as it throws off diagnostic placements. |
Fixed! Thanks for logging that issue. |
|
Sweetness! Will give this a review in the morning. I also added the rest of the team as reviewers in case I miss something.
IMO we leave it out of gauntlet/arena for now. I imagine it is going to add a boatload of diagnostics, and we like to review each one. Considering we know upfront some portion will be false positives, I don't think it's worth the effort.
We squash as part of the merge, so you shouldn't need to do anything to deal with it. |
| let label = format!( | ||
| "SC{}[{}]: {}", | ||
| diagnostic.code, diagnostic.level, diagnostic.message | ||
| ); | ||
| Diagnostic::note(&diagnostic.message) | ||
| .with_rule(ID) | ||
| .with_label(label, span) |
There was a problem hiding this comment.
This repeats the diagnostic.message twice. Is that desirable? Should we omit it from the label as being redundant, or do we like it appearing twice?
There was a problem hiding this comment.
I'm conflicted. Pulling an example from below, I think the initial instance by the note is fine. The second provides the additional info link, which could be helpful. I do notice that the span isn't highlighted correctly. I also think the fix needs to be something else.
note[ShellCheck]: You need a space before the ].
┌─ tests/lints/shellcheck-error/source.wdl:18:25
│
18 │ if [ -f "$broken"]
│ ^
│
│ SC1020[error]: You need a space before the ].
│ more info: https://www.shellcheck.net/wiki/SC1020
│
= fix: address the diagnostic as recommended in the message
There was a problem hiding this comment.
@adthrasher Could you clarify what you mean about the span not being highlighted correctly? Shellcheck outputs this diagnostic as a single position one character ahead of the closing bracket.
#!/usr/bin/env bash
# the below line has 11 columns of text
[ -f "foo"]
yields:
{
"file": "test.sh",
"line": 3,
"endLine": 3,
"column": 12,
"endColumn": 12,
"level": "error",
"code": 1072,
"message": "Missing space before ]. Fix any mentioned problems and try again.",
"fix": null
}
(note that shellcheck 1-indexes columns)
so I think it's 1:1 with how shellcheck reports it.
There was a problem hiding this comment.
Re: the message
@peterhuene and I discussed this some in the Zulip. This initially came about because Gauntlet requires all diagnostic messages to be unique for a given line + position. The solution I came up with was to include the SC###[] in the message, but only the shellcheck message in the label. But happy to rework. Agree the fix could be much more useful.
There was a problem hiding this comment.
So it's the underlying shellcheck that returns the column position after ]. That's good to know. It still seems like the highlight should be one position earlier, so that it flags the ].
There was a problem hiding this comment.
This thread got a little sidetracked. Bringing up the original Q again, are we ok with the SC message being repeated? Maybe I'm lacking in imagination here, but I don't really see a way to get rid of the duplication that still looks ok.
I like it at the top of the diagnostic and that ensures uniqueness for gauntlet. Removing it from the label leaves that part lacking... I'm stumped.
I'm ok with it appearing twice, but that's mostly because I can't think of an alternative I like. Open to any ideas here.
There was a problem hiding this comment.
I'm fine with the duplication. We can always revisit it in the future.
|
@thatRichman can you add a test that |
| @@ -150,3 +152,32 @@ pub fn rules() -> Vec<Box<dyn Rule>> { | |||
|
|
|||
| rules | |||
| } | |||
|
|
|||
| /// Gets the optional rule set. | |||
| pub fn optional_rules() -> Vec<Box<dyn Rule>> { | |||
There was a problem hiding this comment.
this is probably overkill since this will (hopefully) be a temporary home for shellcheck.
|
We're pretty dang close here @thatRichman . Please get the CI all green, then I think this will have my approval The general rule we follow is to require approval from two core team members for a merge. |
|
@a-frantz Sounds good. One thing to note is that I did end up needing to re-enable shellcheck install in the CI. This is because if shellcheck isn't present, the first lint test that is run will end up with the 'shellcheck not found' warning, and the source.errors for the shellcheck-* lints will be empty. I thought about modifying the lints test script to selectively skip the shellcheck lints, but this would not address the 'missing shellcheck' lint. Here is an example of the modified CI going green on my repo but I don't think there's any way to reflect that here unless we merge the actions changes to main in a separate PR first. |
| let label = format!( | ||
| "SC{}[{}]: {}", | ||
| diagnostic.code, diagnostic.level, diagnostic.message | ||
| ); | ||
| Diagnostic::note(&diagnostic.message) | ||
| .with_rule(ID) | ||
| .with_label(label, span) |
There was a problem hiding this comment.
This thread got a little sidetracked. Bringing up the original Q again, are we ok with the SC message being repeated? Maybe I'm lacking in imagination here, but I don't really see a way to get rid of the duplication that still looks ok.
I like it at the top of the diagnostic and that ensures uniqueness for gauntlet. Removing it from the label leaves that part lacking... I'm stumped.
I'm ok with it appearing twice, but that's mostly because I can't think of an alternative I like. Open to any ideas here.
Co-authored-by: Andrew Frantz <[email protected]>
thatRichman
force-pushed
the
feat/shellcheck-lint-command-blocks
branch
from
75b3355 to
cb4b0fa
Compare
thatRichman
force-pushed
the
feat/shellcheck-lint-command-blocks
branch
from
cb4b0fa to
9040430
Compare
This pull request adds a new rule to
wdl-lint.ShellCheckRuleDescribe the rules you have implemented and link to any relevant issues.
I have implemented a lint rule that runs shellcheck against command sections and reports the comments as diagnostics. This is to address #191 .
Before submitting this PR, please make sure:
CHANGELOG.md(see["keep a changelog"] for more information).
Rule specific checks:
RULES.md.rules()function inwdl-lint/src/lib.rs.wdl-lint/tests/lintsthat covers everypossible diagnostic emitted for the rule within the file where the rule
is implemented.
Visitorcallback, you have alsooverridden that callback method for the special
Validator(
wdl-ast/src/validation.rs) andLintVisitor(
wdl-lint/src/visitor.rs) visitors. These are required to ensure the newvisitor callback will execute.
wdl-gauntlet --refreshto ensure that there are nounintended changes to the baseline configuration file (
Gauntlet.toml).wdl-gauntlet --refresh --arenato ensure that all of therules added/removed are now reflected in the baseline configuration file
(
Arena.toml).