Page MenuHomePhabricator
Create Task
Maniphest T240989

Enable codehealth pipeline for more node services maintained by Product Infrastructure
Open, MediumPublic
Actions

Description

Background

The push-notifications service has been using the code-health pipeline successfully for the past quarter. We should now add this capability to more node-services maintained by the Product Infrastructure team.

Acceptance criteria

Code-health pipeline is enabled for the following services:

  • mobileapps
  • chromium-renderer
  • wikifeeds

Genesis:

MediaWiki and other projects are experimenting sonarcloud in the CI pipeline to improve codehealth. That's something that node services could also benefit from if possible.

The genesis of this proposal is at:

In T224990#5747794, @kostajh wrote:

[...] See T238004: Implement sonarcloud integration for Java projects in the same way as PHP projects. We would probably do something similar to what @Mstyles is working on there.

Details

SubjectRepoBranchLines +/-
Enable code-health pipelinemediawiki/services/push-notificationsmaster+164 -4
jjb: Codehealth pipeline NodeJS configurationintegration/configmaster+80 -0
jjb: [nodejs-codehealth-*] Use run.sh entrypointintegration/configmaster+2 -1
dockerfiles: [java8-sonar-scanner] Add a generic run.sh scriptintegration/configmaster+19 -0
Customize query in gerrit

Related Objects

Event Timeline

MSantos created this task.Dec 17 2019, 8:11 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptDec 17 2019, 8:11 PM
Jhernandez added a comment.Dec 18 2019, 4:41 PM

Hey @MSantos can you fill the task description with more detail? Maybe using the template?

MSantos updated the task description. (Show Details)Jan 7 2020, 7:23 PM
MSantos moved this task from Needs triage to Tracking on the Product-Infrastructure-Team-Backlog-Deprecated board.
kostajh added a comment.Jan 8 2020, 8:06 AM

@MSantos T238004 is not yet live but it has all the patches which show what you'd want to do. Are those patches something you or others from #product-infrastructure-team-backlog would work on or would you like someone from Code-Health-Metrics to lead? I can't promise it would happen soon but I think we could do it this quarter sometime.

Michael subscribed.Jan 8 2020, 1:38 PM
MSantos triaged this task as Low priority.Jan 8 2020, 3:14 PM
MSantos added a project: Services.

@kostajh thanks for pointing that out, our team is under-resourced for this quarter, so we might not have time to work on this. It would be good if Code-Health-Metrics could lead, no rush to have it done from our side though. I'm tagging Services as well to have more input from other teams who develop node services.

Jhernandez unsubscribed.Apr 2 2020, 6:46 PM
MSantos moved this task from Tracking to Needs triage on the Product-Infrastructure-Team-Backlog-Deprecated board.Apr 21 2020, 3:27 PM
LGoto raised the priority of this task from Low to Medium.May 6 2020, 3:57 PM
LGoto moved this task from Needs triage to Backlog on the Product-Infrastructure-Team-Backlog-Deprecated board.
gerritbot added a comment.Jun 17 2020, 6:53 PM

Change 606241 had a related patch set uploaded (by MSantos; owner: MSantos):
[integration/config@master] Add run-node.sh script to allow node projects...

https://gerrit.wikimedia.org/r/606241

gerritbot added a project: Patch-For-Review.Jun 17 2020, 6:53 PM
gerritbot added a comment.Jun 17 2020, 8:04 PM

Change 606253 had a related patch set uploaded (by Kosta Harlan; owner: Kosta Harlan):
[integration/config@master] WIP: Codehealth pipeline NodeJS configuration

https://gerrit.wikimedia.org/r/606253

kostajh added a subscriber: Jdforrester-WMF.Jun 17 2020, 8:53 PM

@Jdforrester-WMF I started working on a patch for this but have realized that we might need to integrate NodeJS projects (or at least mediawiki/services/push-notifications) into the codehealth pipeline in a different way than we've done for Java and MediaWiki extensions + core.

push-notifications is using a pipeline, so should we be adding configuration to its .pipeline/config.yaml and .pipeline/blubber.yaml files to handle reporting to SonarQube as part of the pipeline build? Or should we go with the path of defining a project + job-templates as the current patch is proposing to do?

MSantos added a comment.Jun 18 2020, 10:46 AM

@kostajh thanks for the initial feedback and work on this, I have been testing sonar cloud integration with Push-Notification-Service [1] and have reached a problem with code coverage.

The problem is that lcov.info file contains absolute paths [2] when generated, is that something that should be a concern when the pipeline is enabled for node services? Here is the output when running the sonar scanning container:

INFO: Analysing [/workspace/src/coverage/lcov.info]
WARN: Could not resolve 15 file paths in [/workspace/src/coverage/lcov.info]
WARN: First unresolved path: /home/mateus/workspace/wikimedia/infrastructure/push-notifications/src/app.ts (Run in DEBUG mode to get full list of unresolved paths)

[1] https://sonarcloud.io/dashboard?id=thesocialdev_mediawiki-services-push-notifications
[2] https://github.com/coverlet-coverage/coverlet/issues/263

kostajh added a comment.Jun 18 2020, 10:49 AM

@MSantos yeah, this is annoying, so what we need to do in the mediawiki-services.yaml config as a step just before executing sonar-scanner is something similar to what we do for MediaWiki extensions:

- shell: |
    if [ -f src/extensions/"$EXT_NAME"/coverage/lcov.info ]; then
      sed -ie "s#/src/#/workspace/src/extensions/$EXT_NAME/#g" src/extensions/"$EXT_NAME"/coverage/lcov.info
    fi

This is in line ~636 from mediawiki.yaml in the integration/config repo.

gerritbot added a comment.Jun 18 2020, 3:00 PM

Change 606241 merged by jenkins-bot:
[integration/config@master] dockerfiles: [java8-sonar-scanner] Add a generic run.sh script

https://gerrit.wikimedia.org/r/606241

Stashbot added a comment.Jun 18 2020, 4:46 PM

Mentioned in SAL (#wikimedia-releng) [2020-06-18T16:44:32Z] <James_F> Docker: Publishing java8-sonar-scanner:0.6.1 for T240989

gerritbot added a comment.Jun 18 2020, 5:35 PM

Change 606253 merged by jenkins-bot:
[integration/config@master] jjb: Codehealth pipeline NodeJS configuration

https://gerrit.wikimedia.org/r/606253

Stashbot added a comment.Jun 18 2020, 5:38 PM

Mentioned in SAL (#wikimedia-releng) [2020-06-18T17:36:40Z] <James_F> Zuul: [mediawiki/services/push-notifications] Enable new node codehealth job T240989 T251441

Stashbot mentioned this in T251441: CI and test coverage.Jun 18 2020, 5:39 PM
gerritbot added a comment.Jun 18 2020, 7:13 PM

Change 606495 had a related patch set uploaded (by Kosta Harlan; owner: Kosta Harlan):
[integration/config@master] jjb: Use run.sh entrypoint for NodeJS codehealth job

https://gerrit.wikimedia.org/r/606495

kostajh added a comment.Jun 22 2020, 1:16 PM
In T240989#6233275, @kostajh wrote:

@Jdforrester-WMF I started working on a patch for this but have realized that we might need to integrate NodeJS projects (or at least mediawiki/services/push-notifications) into the codehealth pipeline in a different way than we've done for Java and MediaWiki extensions + core.

push-notifications is using a pipeline, so should we be adding configuration to its .pipeline/config.yaml and .pipeline/blubber.yaml files to handle reporting to SonarQube as part of the pipeline build? Or should we go with the path of defining a project + job-templates as the current patch is proposing to do?

Since are you are already using the pipeline, and because that is different from how the other projects are setup, I think we should try to implement the codehealth check in the pipeline. Or at least consider doing it that way.

You'd want to do something similar to what the above patch proposes (generate test coverage, then trigger a call to sonar-scanner which pushes the analysis to SonarQube, and make sure the credentials are available via an environment variable). The only problem I see is how to use the sonar-scanner CLI from within the pipeline context. If I understand what's happening in blubber.yaml, all the operations are happening in the context of a single docker image, so you'd need a script that would download the sonar-scanner.zip (https://docs.sonarqube.org/latest/analysis/scan/sonarscanner/) and then install and run it; I checked and the sonar-scanner binary should run on docker-registry.wikimedia.org/buster-nodejs10-devel.

MSantos added a comment.Jun 23 2020, 4:50 PM
In T240989#6244413, @kostajh wrote:

[...] I checked and the sonar-scanner binary should run on docker-registry.wikimedia.org/buster-nodejs10-devel.

I'm getting an error with missing Java environments:

Could not find 'java' executable in JAVA_HOME or PATH.

@kostajh how did you get it working?

MSantos added a comment.Jun 23 2020, 7:54 PM

Update: I think I got it workable, but I need help with the environment variables:

gerritbot added a comment.Jun 24 2020, 11:10 AM

Change 604830 had a related patch set uploaded (by MSantos; owner: MSantos):
[mediawiki/services/push-notifications@master] WIP: Enable code-health pipeline

https://gerrit.wikimedia.org/r/604830

gerritbot added a comment.Jun 25 2020, 1:09 PM

Change 606495 abandoned by Kosta Harlan:
jjb: [nodejs-codehealth-*] Use run.sh entrypoint

Reason:
We're trying a different approach via the pipeline

https://gerrit.wikimedia.org/r/606495

kostajh moved this task from Backlog to In-Progress on the Code-Health-Metrics board.Jun 29 2020, 3:08 PM
MSantos added a comment.Jul 8 2020, 12:37 PM
In T240989#6244413, @kostajh wrote:
In T240989#6233275, @kostajh wrote:

@Jdforrester-WMF I started working on a patch for this but have realized that we might need to integrate NodeJS projects (or at least mediawiki/services/push-notifications) into the codehealth pipeline in a different way than we've done for Java and MediaWiki extensions + core.

push-notifications is using a pipeline, so should we be adding configuration to its .pipeline/config.yaml and .pipeline/blubber.yaml files to handle reporting to SonarQube as part of the pipeline build? Or should we go with the path of defining a project + job-templates as the current patch is proposing to do?

Since are you are already using the pipeline, and because that is different from how the other projects are setup, I think we should try to implement the codehealth check in the pipeline. Or at least consider doing it that way.

You'd want to do something similar to what the above patch proposes (generate test coverage, then trigger a call to sonar-scanner which pushes the analysis to SonarQube, and make sure the credentials are available via an environment variable). The only problem I see is how to use the sonar-scanner CLI from within the pipeline context. If I understand what's happening in blubber.yaml, all the operations are happening in the context of a single docker image, so you'd need a script that would download the sonar-scanner.zip (https://docs.sonarqube.org/latest/analysis/scan/sonarscanner/) and then install and run it; I checked and the sonar-scanner binary should run on docker-registry.wikimedia.org/buster-nodejs10-devel.

It turns out, this approach is not feasible, see https://gerrit.wikimedia.org/r/c/mediawiki/services/push-notifications/+/604830/11#message-0b3666581322f87fe7baa15ecdce3b5ee54f23a5

We should get back to the previous approach

jeena subscribed.Jul 8 2020, 10:34 PM

@MSantos I added a new task to add passing environment vars to pipelinelib: T257526: Pipelinelib: support passing environment variables to docker images

gerritbot added a comment.Jul 30 2020, 7:37 PM

Change 604830 merged by jenkins-bot:
[mediawiki/services/push-notifications@master] Enable code-health pipeline

https://gerrit.wikimedia.org/r/604830

sdkim moved this task from Backlog to Upcoming on the Product-Infrastructure-Team-Backlog-Deprecated board.Oct 16 2020, 2:31 PM
Maintenance_bot removed a project: Patch-For-Review.Oct 16 2020, 3:10 PM
MSantos renamed this task from Enable codehealth pipeline for node services to Enable codehealth pipeline for more node services maintained by Product Infrastructure.Dec 1 2020, 4:52 PM
MSantos updated the task description. (Show Details)
MSantos updated the task description. (Show Details)
sdkim moved this task from Upcoming to Kanban on the Product-Infrastructure-Team-Backlog-Deprecated board.Dec 1 2020, 6:24 PM
sdkim edited projects, added Product-Infrastructure-Team-Backlog-Deprecated (Kanban); removed Product-Infrastructure-Team-Backlog-Deprecated.
AnnaMikla moved this task from To Do to Sprint Backlog (1/19-2/2.2021) on the Product-Infrastructure-Team-Backlog-Deprecated (Kanban) board.Feb 16 2021, 3:45 PM
MSantos moved this task from Kanban to Backlog on the Product-Infrastructure-Team-Backlog-Deprecated board.Feb 25 2021, 5:09 PM
MSantos edited projects, added Product-Infrastructure-Team-Backlog-Deprecated; removed Product-Infrastructure-Team-Backlog-Deprecated (Kanban).
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL