We follow a rigorous end-to-end quality process to ensure that all code deployed to our cloud is thoroughly validated, not only for functionality but also to meet our internal security and compliance standards.
Pull Request (PR) Checks
Before a pull request (PR) is merged, it must pass several mandatory checks to ensure the code is of the highest quality:
- Unit Tests: These validate the code for both new functionality and regressions to ensure no unintended changes occur.
- Merge Validation: Ensures the code can be cleanly merged into the main branch without conflicts.
- PMD: Performs static code analysis to identify potential issues, like code complexity or violations of coding standards.
- Code Base Hash Check: Ensures the integrity of the codebase and identifies any unauthorized changes.
- Message Check: Verifies that commit messages follow the proper format and include necessary details.
- Code Format Check Style: Ensures the code adheres to our predefined coding style guidelines for consistency.
- Sonar Scan: Runs a static analysis on the code to detect bugs, vulnerabilities, and code smells.
- Git Leaks: Checks for sensitive information, like passwords or keys, that might have been accidentally committed.
- Module Dependency Check: Verifies that all dependencies are correctly managed and compatible.
- Code Pulse: Monitors the overall health and quality of the code, including coverage and complexity metrics.
Once the PR passes all checks, it undergoes a peer code review—sometimes with two rounds of review for added scrutiny. Only after all review gates are cleared is the PR merged into the main branch. Additionally, developers run a set of regression tests to confirm that the existing codebase remains intact after the changes.