# Module 06: Git Best Practices

**Difficulty**: ⭐⭐ Intermediate

**Estimated Time**: 60-90 minutes

**Prerequisites**:
- [Module 00: Setup and Introduction](00_setup_and_introduction.ipynb)
- [Module 01: Git Fundamentals](01_git_fundamentals.ipynb)
- [Module 02: Branching and Merging](02_branching_and_merging.ipynb)
- [Module 03: Remote Repositories and GitHub](03_remote_repositories_and_github.ipynb)
- [Module 04: Collaborating with Pull Requests](04_collaborating_with_pull_requests.ipynb)
- [Module 05: Resolving Merge Conflicts](05_resolving_merge_conflicts.ipynb)

---

## Learning Objectives

By the end of this notebook, you will be able to:

1. Write clear commit messages following conventions
2. Create and maintain effective .gitignore files
3. Determine when and how to commit appropriately
4. Apply branch naming conventions consistently
5. Organize repository structure for maintainability
6. Implement security practices to prevent credential leaks

---

## 1. Commit Message Conventions

### Why Good Commit Messages Matter

Good commit messages are essential for:
- **Understanding history**: Know why changes were made
- **Debugging**: Find when bugs were introduced
- **Collaboration**: Help team members understand your work
- **Documentation**: Serve as project documentation
- **Automation**: Enable automatic changelog generation

### The Seven Rules (Chris Beams)

1. **Separate subject from body** with a blank line
2. **Limit subject to 50 characters**
3. **Capitalize the subject line**
4. **Don't end subject with a period**
5. **Use imperative mood**: "Add feature" not "Added feature"
6. **Wrap body at 72 characters**
7. **Explain what and why, not how**

### Commit Message Template

```
Short summary (50 chars or less)

Detailed explanation if needed. Wrap at 72 characters.
Explain the motivation for the change and how it differs
from previous implementation.

- Bullet points are okay
- Use hyphens or asterisks

Fixes: #123
See also: #456
```

### Good vs Bad Examples

**Bad**:
```
fix bug
update code
asdf
WIP
```

**Good**:
```
Fix null pointer exception in user authentication
Add email validation to registration form
Refactor database connection pooling for performance
Update dependencies to patch security vulnerabilities
```

### Conventional Commits

Many teams use standardized formats:

```
<type>(<scope>): <subject>

<body>

<footer>
```

**Types**:
- `feat`: New feature
- `fix`: Bug fix
- `docs`: Documentation
- `style`: Formatting
- `refactor`: Code restructuring
- `test`: Adding tests
- `chore`: Maintenance

**Examples**:
```
feat(auth): add OAuth2 authentication
fix(api): resolve timeout in user endpoint
docs(readme): update installation instructions
```

---

## 2. The .gitignore File

### What to Ignore

**Always ignore**:
- Build artifacts (`dist/`, `build/`)
- Dependencies (`node_modules/`, `venv/`)
- IDE files (`.vscode/`, `.idea/`)
- OS files (`.DS_Store`, `Thumbs.db`)
- Secrets and credentials (`.env`, `secrets.json`)
- Compiled code (`*.pyc`, `*.class`)
- Log files (`*.log`)

### .gitignore Patterns

```bash
# Ignore specific file
secret.txt

# Ignore all files with extension
*.log
*.tmp

# Ignore directory
build/
dist/

# Ignore in all directories
**/*.pyc

# Exception (don't ignore)
!important.log

# Ignore only in root
/config.ini

# Ignore everything in directory but not the directory
logs/*
!logs/.gitkeep
```

### Common .gitignore for Python

```
# Python
__pycache__/
*.py[cod]
*$py.class
*.so
.Python

# Virtual environments
venv/
env/
ENV/

# IDE
.vscode/
.idea/
*.swp
*.swo

# Jupyter
.ipynb_checkpoints/
*_tested.ipynb

# Data
data/raw/
*.csv
*.db

# OS
.DS_Store
Thumbs.db
```

### Best Practices

1. **Add .gitignore early**: Before first commit
2. **Use templates**: [gitignore.io](https://gitignore.io)
3. **Don't ignore too much**: Only ignore generated/sensitive files
4. **Document exceptions**: Comment why certain files are ignored
5. **Commit .gitignore**: Should be versioned

---

## 3. When and How to Commit

### Commit Frequency

**Good practice**: Commit often, push less often

```
Local:  A - B - C - D - E - F    (many small commits)
Remote: A --------- D --------- F (push periodically)
```

### When to Commit

**Do commit when**:
- Feature is complete and working
- Bug is fixed and tested
- Refactoring is done
- Tests are passing
- At logical stopping points

**Don't commit when**:
- Code doesn't compile
- Tests are failing
- Work is incomplete (use WIP branches)
- You haven't tested the changes

### Atomic Commits

Each commit should be a **single logical change**.

**Bad**: One commit with multiple unrelated changes
```
git commit -m "Fix login bug, add payment feature, update README, refactor database"
```

**Good**: Separate commits for each change
```
git commit -m "Fix null pointer exception in login validation"
git commit -m "Add PayPal integration to checkout"
git commit -m "Update README with deployment instructions"
git commit -m "Refactor database connection to use connection pooling"
```

### Staging Selectively

Use `git add -p` to stage portions of files:

```bash
# Interactive staging
git add -p file.py

# Stage specific lines
# y = yes, stage this hunk
# n = no, don't stage
# s = split into smaller hunks
# e = manually edit the hunk
```

---

In [None]:
# Example: Creating well-structured commits
import os

# Create practice directory
practice_dir = "../outputs/best_practices"
os.makedirs(practice_dir, exist_ok=True)

print(f"Created: {practice_dir}")

In [None]:
# Initialize repository and create .gitignore
%cd {practice_dir}
!git init

# Create comprehensive .gitignore
with open(".gitignore", "w") as f:
    f.write("""# Python
__pycache__/
*.py[cod]
*.so
.Python
venv/
env/

# IDE
.vscode/
.idea/
*.swp

# Jupyter
.ipynb_checkpoints/

# Data
data/raw/
*.csv
*.db

# OS
.DS_Store
Thumbs.db

# Secrets
.env
secrets.json
""")

!git add .gitignore
!git commit -m "Initial commit: Add comprehensive .gitignore"
print("Repository initialized with .gitignore!")

## 4. Branch Naming Conventions

### Standard Patterns

**Feature branches**:
```
feature/user-authentication
feature/payment-integration
feat/new-dashboard
```

**Bug fixes**:
```
bugfix/login-error
fix/memory-leak
hotfix/critical-security-patch
```

**Releases**:
```
release/v1.2.0
release/2024-01
```

**Experiments**:
```
experiment/new-algorithm
poc/blockchain-integration
```

### Naming Rules

**Do**:
- Use lowercase with hyphens: `feature/user-login`
- Be descriptive: `fix/navbar-responsive-bug`
- Use prefixes: `feature/`, `bugfix/`, `hotfix/`
- Include ticket numbers: `feature/JIRA-123-user-auth`

**Don't**:
- Use spaces: ❌ `feature/new stuff`
- Be vague: ❌ `fix`, `test`, `branch1`
- Use special characters: ❌ `feature/user@login`
- Start with hyphen: ❌ `-feature/login`

### Branch Organization

```
main (or master)          # Production-ready code
├── develop               # Integration branch
│   ├── feature/user-auth # Feature work
│   ├── feature/payments  # Another feature
│   └── bugfix/login-fix  # Bug fix
├── release/v1.0.0        # Release preparation
└── hotfix/critical-bug   # Emergency fixes
```

---

## 5. Repository Structure

### Organizing Project Files

**Good structure**:
```
my-project/
├── .git/
├── .github/
│   ├── workflows/        # GitHub Actions
│   └── ISSUE_TEMPLATE/   # Issue templates
├── docs/
│   ├── README.md
│   ├── API.md
│   └── CONTRIBUTING.md
├── src/                  # Source code
│   ├── __init__.py
│   ├── main.py
│   └── utils/
├── tests/                # Test files
│   ├── test_main.py
│   └── test_utils.py
├── data/
│   ├── sample/           # Small samples (commit these)
│   └── raw/              # Large data (don't commit)
├── .gitignore
├── requirements.txt      # Python dependencies
├── setup.py
└── README.md
```

### Essential Files

**README.md**:
```markdown
# Project Name

Brief description

## Installation
pip install -r requirements.txt

## Usage
python src/main.py

## Contributing
See CONTRIBUTING.md

## License
MIT License
```

**CONTRIBUTING.md**:
```markdown
# Contributing Guidelines

## How to Contribute
1. Fork the repository
2. Create feature branch
3. Make changes
4. Add tests
5. Submit pull request

## Code Style
- Follow PEP 8
- Write docstrings
- Add type hints
```

**LICENSE**:
- Choose appropriate license (MIT, Apache, GPL, etc.)
- Include in repository root

---

## 6. Security Best Practices

### Never Commit Secrets

**Sensitive data that should NEVER be in Git**:
- API keys and tokens
- Passwords and credentials
- Private keys and certificates
- Database connection strings
- OAuth secrets

### Use Environment Variables

```python
# ❌ BAD: Hardcoded secrets
API_KEY = "sk_live_abc123xyz789"
db_password = "mypassword123"

# ✅ GOOD: Environment variables
import os
API_KEY = os.getenv("API_KEY")
db_password = os.getenv("DB_PASSWORD")
```

### .env Files

```bash
# .env (add to .gitignore!)
API_KEY=sk_live_abc123xyz789
DB_PASSWORD=mypassword123
SECRET_KEY=supersecretkey
```

### If You Accidentally Commit Secrets

1. **Immediately change/revoke the credentials**
2. **Remove from Git history**:
```bash
# Using BFG Repo Cleaner
java -jar bfg.jar --delete-files secrets.json
git reflog expire --expire=now --all
git gc --prune=now --aggressive

# Or using git filter-branch (older method)
git filter-branch --force --index-filter   "git rm --cached --ignore-unmatch secrets.json"   --prune-empty --tag-name-filter cat -- --all
```
3. **Force push** (coordinate with team!)
4. **Document the incident**

### Scanning for Secrets

**Use tools**:
- `git-secrets`: Prevents committing secrets
- `truffleHog`: Finds secrets in history
- `detect-secrets`: Pre-commit hook

```bash
# Install git-secrets
brew install git-secrets  # macOS
apt-get install git-secrets  # Linux

# Setup
git secrets --install
git secrets --register-aws
```

---

## 7. Exercises

### Exercise 1: Practice Good Commit Messages

1. Create a repository
2. Make several changes (add files, modify code, update docs)
3. Create separate commits with well-formatted messages
4. Include both short and long commit messages
5. Use conventional commit format



In [None]:
# Your code here for Exercise 1


### Exercise 2: Create Comprehensive .gitignore

1. Start a Python project
2. Create a .gitignore file
3. Include patterns for:
   - Python bytecode
   - Virtual environments
   - IDE files
   - Data files
   - OS files
4. Test by creating files that should be ignored
5. Verify with `git status`



In [None]:
# Your code here for Exercise 2


### Exercise 3: Organize a Project Repository

1. Create a new project
2. Set up proper directory structure
3. Add README.md, CONTRIBUTING.md, LICENSE
4. Create .gitignore
5. Organize code into logical directories
6. Commit with good messages

---

In [None]:
# Your code here for Exercise 3


## 8. Knowledge Check

Before moving on, ensure you can answer:

1. What are the seven rules of good commit messages?
2. What types of files should always be in .gitignore?
3. When should you commit your code?
4. What makes a commit "atomic"?
5. What are common branch naming conventions?
6. Why should secrets never be committed to Git?
7. How do you remove accidentally committed secrets?

### Practical Checklist

Can you:
- [ ] Write clear, conventional commit messages
- [ ] Create appropriate .gitignore files
- [ ] Make atomic commits
- [ ] Name branches properly
- [ ] Structure a repository professionally
- [ ] Use environment variables for secrets
- [ ] Recognize and prevent security issues

---

## 9. Summary

In this module, you learned:

- ✅ How to write professional commit messages following conventions
- ✅ Creating and maintaining effective .gitignore files
- ✅ When and how to make commits properly
- ✅ Branch naming conventions and organizational patterns
- ✅ Best practices for repository structure
- ✅ Critical security practices for protecting credentials
- ✅ How to recover from accidentally committing secrets

These best practices will make you a more professional and effective developer!

---

## 10. Next Steps

**Next Module**: [Module 07: GitHub Features](07_github_features.ipynb)

In the next module, you'll learn:
- Using GitHub Issues for project tracking
- Managing projects with GitHub Projects
- Implementing GitHub Actions for CI/CD
- Utilizing Wikis and Discussions
- Configuring repository settings
- Managing collaborators and teams

Take a break and practice these best practices!

---

**Great job! See you in Module 07!**