Circlemator is a bucket of tricks for working with CircleCI and Github used internally at Rainforest QA.
Install the docker image with docker pull rainforestapp/circlemator
.
docker run rainforestapp/circlemator style-check --base-branch=develop
docker run rainforestapp/circlemator test-coverage --base-branch=develop
docker run rainforestapp/circlemator test-security --base-branch=develop
docker run rainforestapp/circlemator self-merge --base-branch=master --compare-branch=develop
docker run rainforestapp/circlemator cancel-old
docker run rainforestapp/circlemator comment 'A totally unnecessary comment' --base-branch=develop
CircleCI starts a build every time you push to Github. That's usually
a good thing, but if you have a big test suite it can be annoying when
your build queue gets gummed up running builds on out-of-date
commits. To clear things up, the cancel-old
task cancels all builds
that are not at the head of their branch. It should be in your
circle.yml
before your tests are run but after the dependencies have
been fetched.
In order for this to work, you need the following environment variable to be set in CircleCI:
CIRCLE_API_TOKEN
: Your CircleCI API token. (Can also be set with the-t
option.)
You can comment on the open PR using the comment
command:
docker run rainforestapp/circlemator comment 'A totally unnecessary comment' --base-branch=develop
Think of this as a poor man's HoundCI: it runs Rubocop (and/or more linters/checkers TBD) and comments on the Github pull request using the excellent Pronto. Use it like so:
docker run rainforestapp/circlemator style-check --base-branch=develop
(Note: use local branch names, like develop
instead of
origin/develop
; origin
will be prepended for running pronto as
necessary.)
It probably makes sense to put style-check
in either the pre
or
override
steps.)
style-check
requires the following environment variable to be set:
GITHUB_ACCESS_TOKEN
: A Github API auth token for a user with commit access to your repo. (Can also be set with the-g
option.)
The code coverage check looks for untested lines in the pull request using Pronto and Undercover and posts warnings as PR comments.
Set up code coverage reporting with SimpleCov to start finding untested code after tests have been executed:
# Gemfile
group :test do
gem 'simplecov'
gem 'simplecov-lcov'
end
# spec_helper.rb (or test_helper.rb)
require 'simplecov'
require 'simplecov-lcov'
SimpleCov::Formatter::LcovFormatter.config.report_with_single_file = true
SimpleCov.formatter = SimpleCov::Formatter::LcovFormatter
SimpleCov.start do
add_filter(/^\/spec\//) # For RSpec
add_filter(/^\/test\//) # For Minitest
end
require 'your_app'
# ...
Then use it like this:
docker run rainforestapp/circlemator test-coverage --base-branch=develop
Circlemator reads additional config from .pronto.yml
test-coverage
requires the following environment variable to be set:
GITHUB_ACCESS_TOKEN
: A Github API auth token for a user with commit access to your repo. (Can also be set with the-g
option.)
The security check looks for common security errors using Pronto and Brakeman Static Application Security Testing and post warnings as PR comments.
docker run rainforestapp/circlemator test-security --base-branch=develop
(Note: use local branch names, like develop
instead of
origin/develop
; origin
will be prepended for running pronto as
necessary.)
It probably makes sense to put test-security
in either the pre
or
override
steps.)
test-security
requires the following environment variable to be set:
GITHUB_ACCESS_TOKEN
: A Github API auth token for a user with commit access to your repo. (Can also be set with the-g
option.)
Preamble: at Rainforest, our process for getting code into production looks like this:
- Push to feature branch pull request.
- Run unit tests and get code review (repeat 1-2 as necessary).
- Merge feature branch to
master
. - Deploy from
master
.
Out of these, steps 1, 2, and 3 require manual intervention, but everything else should be automatically handled by CircleCI!
To use self-merge
, add something like the following to your
circle.yml:
docker run rainforestapp/circlemator self-merge --base-branch=master --compare-branch=develop
Swap out develop
and master
as necessary to fit your workflow. Be
warned, the circlemator
command should probably be the last command
in your deploy stage! (Otherwise you'll merge before your build is
done.)
self-merge
will only run if there is an open pull request against
the base branch. That means you have a way to prevent automatic
shipping in exceptional circumstances: just don't open a release pull
request.
self-merge
requires the following environment variable to be set:
GITHUB_ACCESS_TOKEN
: A Github API auth token for a user with commit access to your repo. (Can also be set with the-g
option.)
Also, unfortunately branch protection cannot be enabled on your
master
branch. (Contributions welcome for anyone who can think of a
workaround...)
Bug reports and pull requests are welcome on GitHub at https://github.com/rainforestapp/circlemator.
Merge to master, Google will build a new docker image and release it on GCR.io at https://gcr.io/rf-public-images/circlemator