Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Forbid binary files in commits #792

Merged
merged 1 commit into from
Mar 26, 2024
Merged

Forbid binary files in commits #792

merged 1 commit into from
Mar 26, 2024

Conversation

aaronmondal
Copy link
Member

@aaronmondal aaronmondal commented Mar 24, 2024
edited by allada
Loading

This hook triggers on all non-excluded binary files.

Should prevent issues like #791 in the future.

This change is Reviewable

aaronmondal
aaronmondal commented Mar 24, 2024
View reviewed changes
Copy link
Member Author

@aaronmondal aaronmondal left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

+@allada +@adam-singer +@zbirenbaum +@blakehatch

Reviewable status: 0 of 4 LGTMs obtained, and pending CI: Analyze (javascript-typescript), Analyze (python), Bazel Dev / ubuntu-22.04, Cargo Dev / macos-13, Cargo Dev / ubuntu-22.04, Local / ubuntu-22.04, Remote / large-ubuntu-22.04, asan / ubuntu-22.04, docker-compose-compiles-nativelink (20.04), docker-compose-compiles-nativelink (22.04), integration-tests (20.04), integration-tests (22.04), macos-13, pre-commit-checks, publish-image, ubuntu-20.04 / stable, ubuntu-22.04, ubuntu-22.04 / stable, vale, windows-2022 / stable, zig-cc ubuntu-20.04, zig-cc ubuntu-22.04 (waiting on @adam-singer, @allada, @blakehatch, and @zbirenbaum)

zbirenbaum
zbirenbaum reviewed Mar 24, 2024
View reviewed changes
Copy link
Contributor

@zbirenbaum zbirenbaum left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

:lgtm:

Reviewable status: 1 of 4 LGTMs obtained, and pending CI: Bazel Dev / ubuntu-22.04, Cargo Dev / macos-13, Cargo Dev / ubuntu-22.04, asan / ubuntu-22.04, docker-compose-compiles-nativelink (20.04), docker-compose-compiles-nativelink (22.04), integration-tests (20.04), integration-tests (22.04), macos-13, pre-commit-checks, ubuntu-20.04 / stable, ubuntu-22.04, ubuntu-22.04 / stable, windows-2022 / stable, zig-cc ubuntu-20.04, zig-cc ubuntu-22.04 (waiting on @adam-singer, @allada, and @blakehatch)

zbirenbaum
zbirenbaum reviewed Mar 24, 2024
View reviewed changes
Copy link
Contributor

@zbirenbaum zbirenbaum left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewable status: 1 of 4 LGTMs obtained, and pending CI: Bazel Dev / ubuntu-22.04, Cargo Dev / macos-13, Cargo Dev / ubuntu-22.04, asan / ubuntu-22.04, docker-compose-compiles-nativelink (20.04), docker-compose-compiles-nativelink (22.04), integration-tests (20.04), integration-tests (22.04), macos-13, pre-commit-checks, ubuntu-20.04 / stable, ubuntu-22.04, ubuntu-22.04 / stable, windows-2022 / stable, zig-cc ubuntu-20.04, zig-cc ubuntu-22.04 (waiting on @adam-singer, @allada, and @blakehatch)

-- commits line 6 at r1:
nit: It might be a good idea to include a small statement about where to find the exclusions if you want to add one in the commit message or docs. Just something like “To add a new exclusion put the file path in the forbid-binary-files rule in pre-commit-hooks.nix” so people don’t waste time trying to hunt it down.

tools/pre-commit-hooks.nix line 54 at r1 (raw file):

    types = ["text"];
  };
  forbid-binary-files = {

nit: Do these hooks run even if someone isn’t using nix?

adam-singer
adam-singer approved these changes Mar 25, 2024
View reviewed changes
Copy link
Contributor

@adam-singer adam-singer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

:lgtm:

Reviewed 1 of 1 files at r1, all commit messages.
Reviewable status: 2 of 4 LGTMs obtained, and pending CI: pre-commit-checks (waiting on @allada and @blakehatch)

aaronmondal
aaronmondal commented Mar 25, 2024
View reviewed changes
Copy link
Member Author

@aaronmondal aaronmondal left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewable status: 2 of 4 LGTMs obtained, and pending CI: Analyze (javascript-typescript), Analyze (python), Bazel Dev / ubuntu-22.04, Cargo Dev / macos-13, Cargo Dev / ubuntu-22.04, Local / ubuntu-22.04, Remote / large-ubuntu-22.04, asan / ubuntu-22.04, docker-compose-compiles-nativelink (20.04), docker-compose-compiles-nativelink (22.04), integration-tests (20.04), integration-tests (22.04), macos-13, pre-commit-checks, publish-image, ubuntu-20.04 / stable, ubuntu-22.04, ubuntu-22.04 / stable, vale, windows-2022 / stable, zig-cc ubuntu-20.04, zig-cc ubuntu-22.04 (waiting on @allada and @blakehatch)

tools/pre-commit-hooks.nix line 54 at r1 (raw file):

Previously, zbirenbaum (Zach Birenbaum) wrote…

nit: Do these hooks run even if someone isn’t using nix?

No. They intentionally only work in the nix environment. When you enter the nix environment it invokes this script on startup:

nativelink/flake.nix

Lines 214 to 216 in 09b32c9

# Generate the .pre-commit-config.yaml symlink when entering the
# development shell.
${config.pre-commit.installationScript}

This is to ensure that the hooks are reproducible between local and CI runs. This approach also "pins" the hook versions to each commit via flake.lock - when you roll back to a previous commit, the hooks in the environment will roll back as well.

@allada allada force-pushed the main branch 2 times, most recently from a2a06c2 to 09defc6 Compare March 26, 2024 18:19
@aaronmondal
Forbid binary files in commits
e2f57e8 
This hook triggers on all non-excluded binary files.

To exclude a file from this check, add it to the `excludes` section in
`tools/pre-commit-hooks.nix`.

Should prevent issues like TraceMachina#791 in the future.
allada
allada approved these changes Mar 26, 2024
View reviewed changes
Copy link
Member

@allada allada left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

:lgtm:

Reviewed 1 of 1 files at r2, all commit messages.
Reviewable status: 3 of 4 LGTMs obtained, and pending CI: Analyze (javascript-typescript), Bazel Dev / ubuntu-22.04, Vercel, asan / ubuntu-22.04, integration-tests (20.04), pre-commit-checks, publish-image, ubuntu-20.04 / stable, ubuntu-22.04 (waiting on @blakehatch)

@aaronmondal aaronmondal enabled auto-merge (squash) March 26, 2024 18:36
aaronmondal
aaronmondal commented Mar 26, 2024
View reviewed changes
Copy link
Member Author

@aaronmondal aaronmondal left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

-@blakehatch

Reviewable status: 3 of 3 LGTMs obtained, and pending CI: Bazel Dev / ubuntu-22.04, Cargo Dev / macos-13, Cargo Dev / ubuntu-22.04, docker-compose-compiles-nativelink (20.04), docker-compose-compiles-nativelink (22.04), macos-13, windows-2022 / stable, zig-cc ubuntu-20.04, zig-cc ubuntu-22.04

blakehatch
blakehatch approved these changes Mar 26, 2024
View reviewed changes
Copy link
Contributor

@blakehatch blakehatch left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

:lgtm:

Reviewed all commit messages.
Reviewable status: 3 of 3 LGTMs obtained, and pending CI: Bazel Dev / ubuntu-22.04, Cargo Dev / macos-13, Cargo Dev / ubuntu-22.04, docker-compose-compiles-nativelink (20.04), docker-compose-compiles-nativelink (22.04), macos-13, windows-2022 / stable

@aaronmondal aaronmondal merged commit d9fc4ad into TraceMachina:main Mar 26, 2024
25 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zbirenbaum zbirenbaum zbirenbaum left review comments

@adam-singer adam-singer adam-singer approved these changes

@allada allada allada approved these changes

@blakehatch blakehatch blakehatch approved these changes

Assignees

@adam-singer adam-singer

@allada allada

@zbirenbaum zbirenbaum

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@aaronmondal @adam-singer @allada @zbirenbaum @blakehatch