Halaman utama Jelajahi Bantuan
Daftar Masuk
nee2c
/
salt
cermin dari https://github.com/nee2c/salt.git
1
0
Fork 0
Berkas Masalah 0 Wiki
Cabang: master
Ranting Tag
salt
/
doc
/
topics
/
development
/
pull_requests.rst

pull_requests.rst 8.5 KB
Permalink Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187 
  1. .. _pull_requests:
    2. 

  2. 

  3. Pull Requests
    4. 

  4. =============
    5. 

  5. 

  6. Salt is a large software project with many developers working together. We
    7. 

  7. encourage all Salt users to contribute new features, bug fixes and
    8. 

  8. documentation fixes. For those who haven't contributed to a large software
    9. 

  9. project before we encourage you to consider the following questions when
    10. 

  10. preparing a pull request.
    11. 

  11. 

  12. This isn't an exhaustive list and these aren't necessarily hard and fast rules,
    13. 

  13. but these are things we consider when reviewing a pull request.
    14. 

  14. 

  15. * Does this change work on all platforms? In cases where it does not, is an
    16. 

  16.   appropriate and easy-to-understand reason presented to the user? Is it
    17. 

  17.   documented as-such? Have we thought about all the possible ways this code
    18. 

  18.   might be used and accounted as best we can for them?
    19. 

  19. 

  20. * Will this code work on versions of all Python we support? Will it work on
    21. 

  21.   future versions?
    22. 

  22. 

  23. * Are Python reserved keywords used? Are variables named in a way that will
    24. 

  24.   make it easy for the next person to understand what's going on?
    25. 

  25. 

  26. * Does this code present a security risk in any way? What is the worst possible
    27. 

  27.   thing that an attacker could do with this code? If dangerous cases are
    28. 

  28.   possible, is it appropriate to document them? If so, has this been done?
    29. 

  29.   Would this change pass muster with a professional security audit? Is it
    30. 

  30.   obvious to a person using this code what the risks are?
    31. 

  31. 

  32. * Is it readable? Does it conform to our `style guide`_? Is the code documented
    33. 

  33.   such that the next person who comes along will be able to read and understand
    34. 

  34.   it? Most especially, are edge-cases documented to avoid regressions? Will it
    35. 

  35.   be immediately evident to the next person who comes along why this change was
    36. 

  36.   made?
    37. 

  37. 

  38. .. _`style guide`: https://docs.saltstack.com/en/latest/topics/development/conventions/style.html
    39. 

  39. 

  40. * If appropriate, has the person who wrote the code which is being modified
    41. 

  41.   been notified and included in the process?
    42. 

  42. 

  43. * What are the performance implications of this change? Is there a more
    44. 

  44.   efficient way to structure the logic and if so, does making the change
    45. 

  45.   balance itself against readability in a sensible way? Do the performance
    46. 

  46.   characteristics of the code change based on the way it is being invoked
    47. 

  47.   (i.e., through an API or various command-line tools.) Will it be easy to
    48. 

  48.   profile this change if it might be a problem?
    49. 

  49. 

  50. * Are caveats considered and documented in the change?
    51. 

  51. 

  52. * Will the code scale? More critically, will it scale in *both* directions?
    53. 

  53.   Salt runs in data-centers and on Raspberry Pi installations in the Sahara. It
    54. 

  54.   needs to work on big servers and tiny devices.
    55. 

  55. 

  56. * Is appropriate documentation written both in public-facing docs and in-line?
    57. 

  57.   How will the user know how to use this? What will they do if it doesn't work
    58. 

  58.   as expected? Is this something a new user will understand? Can a user know
    59. 

  59.   all they need to about this functionality by reading the public docs?
    60. 

  60. 

  61. * Is this a change in behavior? If so, is it in the appropriate branch? Are
    62. 

  62.   deprecation warnings necessary? Have those changes been fully documented?
    63. 

  63.   Have we fully thought through what implications a change in behavior might
    64. 

  64.   have?
    65. 

  65. 

  66. * How has the code been tested? If appropriate are there automated tests which
    67. 

  67.   cover this? Is it likely to regress? If so, how has the potential of that
    68. 

  68.   regression been mitigated? What is the plan for ensuring that this code works
    69. 

  69.   going forward?
    70. 

  70. 

  71. * If it's asynchronous code, what is the potential for a race condition?
    72. 

  72. 

  73. * Is this code an original work? If it's borrowed from another project or found
    74. 

  74.   online are the appropriate licensing/attribution considerations handled?
    75. 

  75. 

  76. * Is the reason for the change fully explained in the PR? If not for review,
    77. 

  77.   this is necessary so that somebody in the future can go back and figure out
    78. 

  78.   why it was necessary.
    79. 

  79. 

  80. * Is the intended behavior of the change clear? How will that behavior be known
    81. 

  81.   to future contributors and to users?
    82. 

  82. 

  83. * Does this code handle errors in a reasonable way? Have we gone back through
    84. 

  84.   the stack as much as possible to make sure that an error cannot be raised
    85. 

  85.   that we do not account for? Are errors tested for as well as proper
    86. 

  86.   functionality?
    87. 

  87. 

  88. * If the code relies on external libraries, do we properly handle old versions
    89. 

  89.   of them? Do we require a specific version and if so is this version check
    90. 

  90.   implemented? Is the library available on the same platforms that module in
    91. 

  91.   question claims to support? If the code was written and tested against a
    92. 

  92.   particular library, have we documented that fact?
    93. 

  93. 

  94. * Can this code freeze/hang/crash a running daemon? Can it stall a state run?
    95. 

  95.   Are there infinite loops? Are appropriate timeouts implemented?
    96. 

  96. 

  97. * Is the function interface well documented? If argument types can not be
    98. 

  98.   inferred by introspection, are they documented?
    99. 

  99. 

  100. * Are resources such as file-handles cleaned-up after they are used?
    101. 

  101. 

  102. * Is it possible that a reference-cycle exists between objects that will leak
    103. 

  103.   memory?
    104. 

  104. 

  105. * Has the code been linted and does it pass all tests?
    106. 

  106. 

  107. * Does the change fully address the problem or is it limited to a small surface
    108. 

  108.   area? By this, I mean that it should be clear that the submitter has looked
    109. 

  109.   for other cases in the function or module where the given case might also be
    110. 

  110.   addressed. If additional changes are necessary are they documented in the
    111. 

  111.   code as a FIXME or the PR and in Github as an issue to be tracked?
    112. 

  112. 

  113. * Will the code throw errors/warnings/stacktraces to the console during normal
    114. 

  114.   operation?
    115. 

  115. 

  116. * Has all the debugging been removed?
    117. 

  117. 

  118. * Does the code log any sensitive data? Does it show sensitive data in process
    119. 

  119.   lists? Does it store sensitive data to disk and if so, does it do so in a
    120. 

  120.   secure manner? Are there potential race conditions in between writing the
    121. 

  121.   data to disk and setting the appropriate permissions?
    122. 

  122. 

  123. * Is it clear from the solution that the problem is well-understood? How can
    124. 

  124.   somebody who has never seen the problem feel confident that this proposed
    125. 

  125.   change is the best one?
    126. 

  126. 

  127. * What's hard-coded that might not need to be? Are we making sensible decisions
    128. 

  128.   for the user and allowing them to tune and change things where appropriate?
    129. 

  129. 

  130. * Are utility functions used where appropriate? Does this change re-implement
    131. 

  131.   something we already have code for?
    132. 

  132. 

  133. * Is the right thing being fixed? There are cases where it's appropriate to fix
    134. 

  134.   a test and cases where it's appropriate to fix the code that's under test.
    135. 

  135.   Which is best for the user? Is this change a shortcut or a solution that will
    136. 

  136.   be solid in the months and years to come?
    137. 

  137. 

  138. * How will this code react to changes elsewhere in the code base? What is it
    139. 

  139.   coupled to and have we fully thought through how best to present a coherent
    140. 

  140.   interface to consumers of a given function or method?
    141. 

  141. 

  142. * Does this PR try to fix too many bugs/problems at once?
    143. 

  143. 

  144. * Should this be split into multiple PRs to make them easier to test and reason
    145. 

  145.   about?
    146. 

  146. 

  147. Pull Request Requirements
    148. 

  148. =========================
    149. 

  149. 

  150. The following outlines what is required before a pull request can be merged into
    151. 

  151. the salt project. For each of these requirements, an exception can be made
    152. 

  152. that requires 3 approvals before merge. The exceptions are detailed more below.
    153. 

  153. 

  154. All PR requirements
    155. 

  155. -------------------
    156. 

  156.   * Approval Required: approval review from core team member OR 1 approval review
    157. 

  157.     from captain of working group
    158. 

  158.   * Cannot merge your own PR until 1 reviewer approves from defined list above that
    159. 

  159.     is not the author.
    160. 

  160.   * All Tests Pass
    161. 

  161. 

  162. Bug Fix PR requirements
    163. 

  163. -----------------------
    164. 

  164.   * Test Coverage: regression test written to cover bug fix. Contributors only need
    165. 

  165.     to write test coverage for their specific changes.
    166. 

  166.   * Point to the issue the PR is resolving. If there is not an issue one will need
    167. 

  167.     to be created.
    168. 

  168. 

  169. Feature PR requirements
    170. 

  170. -----------------------
    171. 

  171.   * Test Coverage: tests written to cover new feature. Contributors only need to write
    172. 

  172.     test coverage for their specific changes.
    173. 

  173.   * Release Notes: Add note in release notes of new feature for relative release.
    174. 

  174.   * Add .. versionadded:: <release> to module's documentation. If you are not certain
    175. 

  175.     which release your fix will be included in you can include TBD and the PR reviewer
    176. 

  176.     will let you know the correct name of the release you need to update to the versionadded.
    177. 

  177. 

  178. Exceptions to all requirements
    179. 

  179. ------------------------------
    180. 

  180. As previously stated, all of the above requirements can be bypassed with 3 approvals.
    181. 

  181. PR's that do not require tests include:
    182. 

  182. 

  183.   * documentation
    184. 

  184.   * cosmetic changes (for example changing from log.debug to log.trace)
    185. 

  185.   * fixing tests
    186. 

  186.   * pylint
    187. 

  187.   * changes outside of the salt directory
    188.