C H E C K S A P I S U P P O R T 🤩

[hiimbex]

What this PR does:

• Upgrades to Probot 7️⃣. 0️⃣
• Eliminates use of status API ❌
• Uses Checks API aka best API 🎆
• Restructures lib/dco.js to return an array of error messages objects like:

[{ 
  "author": "Bex Warner",
  "committer": "Bex Warner",
  "message": "The sign-off is missing.",
  "sha": "fe9f33191f3a87c86843292920decab97b5b71b",
  "url": "https://github.com/probot/dco/pull/78/commits/fe9f33191f3a87c86843292920decab97b5b71b"
}]

• Restructures test/dco.test.js to support that format 🛠
• Adds guidance for ammending your commits 🆘
  • supports git commit --amend --signoff for a mistake in the most recent commit
  • supports git rebase Head~$numOfCommits --signoff for mistakes in multiple commits
  • then instructs git push --force origin $your-branch
• Also includes a list of full length errors for each commit 🔢
• Adds a hard override of the status for anyone with write permissions ✍️

LOOK AT HOW PRETTY IT IS

All commits are signed off:

One commit incorrectly signed off:

Multiple commits incorrectly signed off:

Override button (only visible for those with repo write access):

Todo:

• Properly convert test/index.test.js to v7 and update tests. (tbh I don't fully understand how this test worked before, so not sure how to convert it!)
• Maybe improve code readability/structure because at the moment it's rather hacky

cc/ @probot/maintainers @kytrinyx for 👀& 💭's

[caniszczyk]

omg I’m in love!

[bkeepers]

At a quick glance this looks awesome. I haven't had a chance to review the code yet, but love the functionality.

Is there any way we could "staff ship" this big of a change to allow people to opt in to the new behavior?

Could we separate out the upgrade to Probot 7.0 from the changes in functionality?

[bkeepers]

I'd love to get eyes on this from a legal perspective to make sure that a this is worded properly. Something like "Accept DCO" and "I certify that my contributions fall under the Developer Certificate of Origin: https://developercertificate.org/"

@caniszczyk @mlinksva: could you recommend someone to help here?

Also, I wonder if there should be a separate "Dismiss" vs "Accept" buttons

[hiimbex]

So it's important to note this option is only accessible for users with write access to the repo.

We get quite a few requests for new users to not have to use git so painfully, so if the maintainers of a repo are happy with the user's comments that they "accept" the DCO, might as well give them a free status pass button.

[mlinksva]

Maybe I'm missing something, but this looks to me like a way for a maintainer to ignore the test, not for a contributor to agree their contributions are covered by the DCO.

Added: as @hiimbex wrote faster. 😳

[bkeepers]

Doh, sorry, I totally wasn't thinking about who would be the one clicking the button.

[hiimbex]

Tests are now working! @bkeepers I'm blaming you 100% for the DCO failing (also a good motivator to implement #75 at some point).

Is there any way we could "staff ship" this big of a change to allow people to opt in to the new behavior?

I'm wondering if you still think this is necessary given that the 'set DCO to passing' otpion is only for those with write access. If you still this is something we should pursue, I'm not sure the best path forward for something like this. Maybe an additional .env variable?

I personally don't think a staff ship is necessary since the only functionality change is giving maintainers a button and using checks not statuses (it should still work in the same way). The other big update that goes with this is updating the permissions the app uses; however, now we get to write a note explaining why! I'm happy to craft one explaining this PR super in depth, so our users know why this change is happening.

But whenever you have ⏳ this is ready for 👀!

[bkeepers]

Testing this out locally now and will have more feedback, but first thing I noticed is that there a bunch of undefineds in the tests. Is that just bad test data, or is there something broken?

[bkeepers]

undefined?

[hiimbex]

@bkeepers I honestly thought I updated this. All that needs to change is the fake data passed into each test needs a sha value, for example:

const dcoObject = await getDCOStatus([{commit, author: { login: 'bkeepers' }, parents: []}], alwaysRequireSignoff, prInfo)

should be:

const dcoObject = await getDCOStatus([{commit, author: { login: 'bkeepers' }, parents: [], sha: '318g9hnf02b49uthisisasha'}], alwaysRequireSignoff, prInfo)

The code that actually makes this change is here

[bkeepers]

Gave this a try and it looks pretty good. Eventually I'd love to chat about refactoring some of this code, but it can wait until after this feature lands.

[bkeepers]

This assumes the commits missing the DCO are always the last n commits. What if I have 5 commits, but the one in the middle properly has the DCO?

Could we just have the user rebase based on the base of the pull request?

[hiimbex]

Correct me if I'm wrong, butgit push --force origin ${pr.head.ref} does exactly what you're describing. I was originally trying to do something fancy with commitLength but I think it's actually dead code.

[hiimbex]

Ok, so I forgot what I actually did. So commitLength actually is the number of total commits in the PR, so you always rebase and sign off all of those commits, no matter which ones were wrong via:
git rebase HEAD~${commitLength} --signoff which utilizes this rebase option. And then does:
git push --force origin ${pr.head.ref}

[bkeepers]

What about using context.payload.pull_request.html_url as the base for this?

[hiimbex]

Just confirmed via hiimbex/testing-things#71 that the existing PRs that swap mid-way from the old statuses to checks don't need any special work or support. The re-written check will overwrite the status.

[hiimbex]

Tests are failing due to jestjs/jest#6769 and will I think be fixed in a new Jest release? But it's compeltley unrelated to my changes.

Would love a re-review based on the updates whenever you've got a chance @bkeepers 🙂

[hiimbex]

Consider it 🚢 d!! 🎉

[caniszczyk]

THANK YOU!

…

On Wed, Aug 22, 2018 at 2:09 PM, Bex Warner ***@***.***> wrote: Consider it 🚢 d!! 🎉 — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#79 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/AAD5ITSi2pbiUE9DCM8BlkCEvim5CCV8ks5uTaxtgaJpZM4VEr_o> .

-- Cheers, Chris Aniszczyk http://aniszczyk.org +1 512 961 6719

[github-actions]

🎉 This PR is included in version 1.0.0 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀