agiledigital / jiralint Goto Github PK

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Rate-Limited

These updates are currently rate-limited. Click on a checkbox below to force their creation now.

• chore(deps): update dependency @types/clui to v0.3.4
• chore(deps): update dependency @types/oauth to v0.9.4
• chore(deps): update dependency prettier to v2.8.8
• fix(deps): update dependency io-ts to v2.2.21
• chore(deps): update dependency eslint-config-prettier to v8.10.0
• chore(deps): update dependency eslint-plugin-sonarjs to v0.25.1
• chore(deps): update dependency fast-check to v3.17.1
• chore(deps): update dependency node to 16.20
• chore(deps): update dependency ts-essentials to v9.4.2
• chore(deps): update dependency ts-jest to v29.1.2
• chore(deps): update dependency type-coverage to v2.28.1
• chore(deps): update jest monorepo (@types/jest, jest)
• chore(deps): update typescript-eslint monorepo to v5.62.0 (@typescript-eslint/eslint-plugin, @typescript-eslint/parser)
• fix(deps): update dependency date-fns to v2.30.0
• fix(deps): update dependency fp-ts to v2.16.5
• fix(deps): update dependency inquirer to v8.2.6
• fix(deps): update dependency yargs to v17.7.2
• chore(deps): update actions/cache action to v4
• chore(deps): update actions/checkout action to v4
• chore(deps): update actions/setup-node action to v4
• chore(deps): update dependency eslint to v8.57.0
• chore(deps): update dependency eslint to v9
• chore(deps): update dependency eslint-config-agile-digital to v3
• chore(deps): update dependency eslint-config-prettier to v9
• chore(deps): update dependency eslint-config-typed-fp to v5
• chore(deps): update dependency eslint-plugin-functional to v5.0.8
• chore(deps): update dependency eslint-plugin-functional to v6
• chore(deps): update dependency eslint-plugin-jest to v27.9.0
• chore(deps): update dependency eslint-plugin-jest to v28
• chore(deps): update dependency eslint-plugin-prettier to v5
• chore(deps): update dependency eslint-plugin-total-functions to v6.10.7
• chore(deps): update dependency eslint-plugin-total-functions to v7
• chore(deps): update dependency husky to v9
• chore(deps): update dependency node to v20
• chore(deps): update dependency prettier to v3
• chore(deps): update dependency rollup to v4
• chore(deps): update dependency tsconfig-paths-webpack-plugin to v4
• chore(deps): update dependency typescript to v5
• chore(deps): update typescript-eslint monorepo (major) (@typescript-eslint/eslint-plugin, @typescript-eslint/parser)
• fix(deps): update dependency date-fns to v3
• fix(deps): update dependency string-length to v6
• fix(deps): update dependency ts-pattern to v5
• 🔐 Create all rate-limited PRs at once 🔐

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• chore(deps): update dependency @types/clear to v0.1.4
• chore(deps): update dependency rollup to v2.79.1
• chore(deps): update dependency rollup-plugin-typescript2 to v0.36.0
• chore(deps): update commitlint monorepo to v19 (major) (@commitlint/cli, @commitlint/config-conventional)
• chore(deps): update dependency @types/jira-client to v7
• chore(deps): update jest monorepo to v29 (major) (@types/jest, jest, ts-jest)
• chore(deps): update semantic-release monorepo (major) (@semantic-release/git, semantic-release)
• fix(deps): update dependency inquirer to v9 (inquirer, @types/inquirer)
• fix(deps): update dependency jira-client to v8
• fix(deps): update dependency ts-pattern to v4
• Click on this checkbox to rebase all open PRs at once

Detected dependencies

• Check this box to trigger a request for Renovate to run again on this repository

Now that jiralint-pulumi is consuming the lib package from this repo via a true npm package (private; Github Package Registry), it would be good to automatically publish that package upon release of this repo (via github action, probably).

This will probably involve:

1. in the CI github action: publish the npm package. The ambient GITHUB_TOKEN should give you permission to do this. The action at https://github.com/cycjimmy/semantic-release-action looks promising for this. If that action doesn't work, fall back on doingnpm publish manually (https://docs.npmjs.com/cli/v6/commands/npm-publish). Ensure you're publishing to the private Github Package Registry associated with this repo, not the public npm registry
2. do the above step only for main branch and/or only for release tags

If that doesn't work, we may have to use a machine user and a corresponding PAT:

1. provision a machine user (https://docs.github.com/en/developers/overview/managing-deploy-keys)
2. crete a PAT for that machine user that is permitted to publish packages (https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token)
3. store that PAT in a github secret for this repo (https://github.com/agiledigital-labs/jiralint/settings/secrets/actions)
4. in the CI github action: move that PAT where it needs to be so npm publish uses it (cf. https://github.com/agiledigital-labs/jiralint-pulumi/blob/main/.github/workflows/build-test.yml#L28)
5. then as above

We want to break the build if:

a) the lib package is made to depend on the cli package
b) circular package dependencies are introduced in general

This might be the answer: https://github.com/benmosher/eslint-plugin-import/blob/master/docs/rules/no-cycle.md

At some point we introduced a .jiralintrc config file. This is cool, but I think we've accidentally broken the (now rarely used?) old command line version of the same options.

Even when I specify the host using -h or --jira.host, I still get:

Missing required arguments: jira.host, jira.consumerSecret

Currently one is 15 and the other is 16

In a step toward reproducible builds (or at least, less irrepreducible), we should set up an nvmrc file to try to get all devs aligned on the same node version.

https://github.com/nvm-sh/nvm

https://github.com/nvm-sh/nvm#nvmrc

This dynamic require interacted badly with rollup and/or TypeScript, so I ripped it out and replaced it with explicit imports and function calls.

• build, lint, and test action
• semantic release to save dist bundle to github

Evaluate the use of Jira Expressions instead of the current approach to fetch the data.

v3 of the plain REST APIs store descriptions as structured JSON objects instead of wikitext, so eventually a different approach (like Jira Expressions) will be necessary.

Some projects use custom description fields so that templates can be used.

Permit configuration of those description fields (a map of type -> custom field(s)) and check those as well.

Would make usage on client Jiras, etc much easier

Use the same approach as denim to authenticate.

jiralint currently only support on-prem Jira ("Jira Server"). We want to continue to benefit from it as we migrate to Jira Cloud.

Some ideas:

1. the lint issues for any tickets that the individuals 'owns' that are being 'worked'
2. number of issues being worked by the individual
3. hours logged last business day
4. hours logged this pay period vs expected hours logged this pay period

Add a new rule that will fail if an In Progress not stalled ticket hasn't been worked (as evidenced) by a worklog in the last business day.

Our current comment checking rule requires a comment if:

1. time has been logged AND the issue isn't closed
2. OR the issue is in progress

A conceptually simpler rule is to require a comment whenever time has been logged. i.e a comment must be added "around" the same time that a worklog is added.

The check would look at:

1. time of most recent worklog
2. time of most recent comment

the rule would pass if the comment was <1d before the worklog or after it.

What makes it non-trivial is that worklogs and comments are both paginated fields, so they may be truncated. Issues are currently retrieved using the search API. We need to do one of:

1. see if those fields can be sorted so that we always get the most recent comment and worklog
2. check search results and (if necessary) pull individual ticket comments and worklogs

On my screen the Sign only showed the first letter.
being able to pick or truncate the columns would be nice to have.

https://www.deepcode.ai/app/gh/agiledigital-labs/jiralint/_/dashboard

Some projects use the Epic link to tie work to a milestone or base camp, and should have an epic link before the work enters the board.