XML

Word

Printable

Type: Epic
Resolution: Done
Priority: Normal
Fix Version/s: openshift-4.14.z
Affects Version/s: None
Component/s: CMO
Labels:
- no-docs
- no-qe

Epic Name:
CMO static analysis
Blocked:
False
Blocked Reason:
None
Ready:
False
Color Status:
Not Selected
Docs QE Status:
NEW
Epic Status:
To Do
Parent Link:
MON-3159Technical Debt
QE Status:
NEW
Hierarchy Progress Bar:

0% To Do, 0% In Progress, 100% Done
Target Version:

openshift-4.14

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Intelligence Requested:
Market:

Epic Goal

Enable static code analysis in cluster-monitoring-operator
Create a suitable config for the selected analyzers to allow for ignoring issues that are deemed safe or ignoring portions of the code (like tests)
set up PR checks

Why is this important?

static code analylsis can reduce certain classes of bugs
highlight unused code
enforces consistent code quality

We should run at least https://github.com/golangci/golangci-lint.

https://github.com/securego/gosec could be interesting.

We also have an internal team: https://gitlab.cee.redhat.com/covscan/covscan/-/wikis/home. Maybe there are additional scanners we can possibly run.

Acceptance Criteria

CI - set up PR checks
Run at least golangci-lint
Fix existing issues or create exceptions in the relevant config files.

Assignee:: Daniel Mellado Area

Reporter:: Jan Fajerski

QA Contact:: Junqi Zhao

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2023/04/04 1:09 PM

Updated:: 2024/02/15 6:51 AM

Resolved:: 2023/06/20 9:12 AM