Move whitebox testing to a profile

[jodastephen]

• Use release instead of source/target in pom.xml
• Split install and site in CI

Summary by CodeRabbit

Release Notes

• New Features

  • Enhanced build process with extended testing capabilities.
  • New Maven site documentation generation step added.

• Bug Fixes

  • Updated menu item link for test results in the development section.

• Chores

  • Improved repository cleanup process after updates.
  • Updated project compatibility to Java SE 21.
  • Various plugin version updates to maintain build integrity.

[coderabbitai]

📝 Walkthrough

Walkthrough

The changes in this pull request involve modifications to several files to enhance the build and cleanup processes of the project. The .github/website.sh script now includes commands to delete specific branches after updates. The workflow file .github/workflows/build.yml has been updated to improve permissions, add a new input parameter, modify build commands, and introduce a new step for generating Maven site documentation. The pom.xml file has been adjusted to support Java SE 21, introduce new build profiles, and update plugin configurations. Lastly, the src/site/site.xml file has a minor update to a menu item's link.

Changes

File	Change Summary
.github/website.sh	Added commands to delete remote branches website and website2x after push, with `
.github/workflows/build.yml	Updated permissions for security-events, added token parameter in Checkout, changed Maven command, added Maven site step, and updated GITHUB_TOKEN environment variable.
pom.xml	Updated minimum Java version to SE 21, added maven-clean-plugin configuration, removed maven-surefire-plugin, introduced extended-test profile, renamed release-basics to release-artifacts, and updated plugin versions.
src/site/site.xml	Updated href for "Test results" menu item from surefire-report.html to surefire.html.

Sequence Diagram(s)

sequenceDiagram
    participant User
    participant GitHub
    participant BuildSystem
    participant Maven

    User->>GitHub: Push changes
    GitHub->>BuildSystem: Trigger build workflow
    BuildSystem->>Maven: Execute build with extended tests
    Maven->>Maven: Generate site documentation
    BuildSystem->>GitHub: Cleanup branches

Loading

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (4)

.github/website.sh (1)

24-27: Approve changes with a minor suggestion

The addition of the cleanup commands is a good practice for maintaining a tidy repository. The use of || true ensures the script doesn't fail if the branches don't exist, which is sensible.

A minor suggestion to improve clarity:

Consider adding a comment explaining the purpose of these cleanup commands. For example:

 echo "## tidy..."
 cd ..
+# Remove temporary branches used during the website update process
 git push --delete origin website || true
 git push --delete origin website2x || true

This comment would help future maintainers understand why these specific branches are being deleted.

pom.xml (3)

5-5: Significant update to Java version requirement

The project has been updated to require Java SE 21 or later for building, and the description now indicates compatibility with Java 21 and above. This is a substantial change that may impact users who are still on earlier Java versions.

Consider the following:

1. Ensure that all dependencies and libraries used in the project are compatible with Java 21.
2. Update the project documentation to clearly communicate this change to users.
3. Consider providing migration guidelines for users who need to upgrade their Java version.

Also applies to: 14-14

---

602-731: Approval: Comprehensive 'extended-test' profile added

The new 'extended-test' profile is a well-thought-out addition that enhances the project's testing capabilities. Key benefits include:

1. Thorough testing across different module and classpath configurations.
2. Compatibility with both IDE and Maven-based testing.
3. Clever workaround for IDE issues with 'requires static' by dynamically managing module-info.java.

This approach ensures that the codebase is tested under various conditions, increasing confidence in its compatibility and correctness.

Considerations:

1. Ensure that the profile is well-documented in the project's contribution guidelines.
2. Monitor the build time impact of the additional test executions.
3. Regularly review if this approach is still necessary as IDEs improve their module system support.

---

785-785: Approval: Profile renaming for clarity

The renaming of the profile from 'release-basics' to 'release-artifacts' is a positive change. The new name appears to more accurately reflect the purpose of the profile, which likely deals with the creation and management of release artifacts.

To ensure consistency:

1. Update any project documentation that references this profile.
2. Review and update any CI/CD scripts or workflows that might be using this profile name.
3. Consider adding a comment in the POM file explaining the purpose of this profile for future maintainers.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Files that changed from the base of the PR and between 1ea4ef3 and 59703fe.

📒 Files selected for processing (4)

• .github/website.sh (1 hunks)
• .github/workflows/build.yml (2 hunks)
• pom.xml (7 hunks)
• src/site/site.xml (1 hunks)

🧰 Additional context used

🔇 Additional comments (9)

.github/workflows/build.yml (4)

56-58: Approve addition of separate Maven site step

The introduction of a separate 'Maven site' step is a positive change. It improves the clarity of the workflow and allows for more granular control over the site generation process.

To ensure this change doesn't significantly impact the workflow duration, please monitor the execution times of your workflows. You might want to run the following script to check if the site generation is particularly time-consuming:

#!/bin/bash
# Description: Check for time-consuming tasks in the site generation

# Test: Look for plugins that might be slow in the site generation
echo "Checking for potentially slow plugins in site generation:"
rg --type xml '<reportSet>|<report>' pom.xml -A 5

---

51-51: Approve changes to Maven build command and verify extended tests

The modification to use '-Dextended-test' instead of the 'site' goal is a good separation of concerns. This change allows for more comprehensive testing during the build process.

To ensure the extended tests are properly configured and executed, please run the following script:

#!/bin/bash
# Description: Verify the configuration and impact of extended tests

# Test 1: Check for the definition of extended tests in pom.xml
echo "Checking for extended test profile in pom.xml:"
rg --type xml '<profile>.*<id>extended-test</id>' pom.xml -A 10

# Test 2: Search for usage of the 'extended-test' property in test files
echo "Searching for usage of 'extended-test' property in test files:"
rg --type java '@Test.*extended-test' src/test

---

Line range hint 63-63: Verify the necessity of using a personal access token for website deployment

The use of a personal access token (PERSONAL_TOKEN_GH) for the GITHUB_TOKEN environment variable in the website deployment step is consistent with its usage in the checkout step. However, this approach may have security implications.

Please confirm:

1. Why is the personal access token required for website deployment?
2. Are there any operations in the website deployment that cannot be performed with the default GITHUB_TOKEN?
3. Have you considered using GitHub Actions environments with protection rules for managing access to this secret?

To verify the token's usage in the website deployment script, you can run:

#!/bin/bash
# Description: Check the usage of GITHUB_TOKEN in the website deployment script

# Test: Examine the website deployment script for GitHub API calls or operations requiring elevated permissions
echo "Checking .github/website.sh for GitHub API usage:"
rg --type bash 'api.github.com|GITHUB_TOKEN' .github/website.sh

🧰 Tools

🪛 yamllint

[warning] 25-25: wrong indentation: expected 6 but found 4

(indentation)

---

27-28: Verify the necessity of using a personal access token

The addition of a personal access token to the checkout step provides extended permissions. Whilst this may be necessary for certain operations, it could potentially pose security risks if not managed properly.

Please confirm:

1. Why is the personal access token required for the checkout step?
2. Are the permissions granted to this token limited to only what's necessary?
3. Is the secret 'PERSONAL_TOKEN_GH' properly secured and regularly rotated?

To verify the token's usage, you can run the following script:

src/site/site.xml (1)

85-85: Please verify the updated test results link

The href attribute for the "Test results" menu item has been updated from "surefire-report.html" to "surefire.html". This change appears to be in line with potential updates to the Maven site generation process.

Could you please:

1. Confirm that the new link (surefire.html) is correct and functional in the generated site?
2. Check if there are any other occurrences of "surefire-report.html" in the project that might need updating for consistency?

You can use the following script to search for other occurrences:

pom.xml (4)

103-134: Approval: Enhanced build cleanup process

The addition of the 'clean-mess' execution for the maven-clean-plugin is a positive change. It helps maintain a clean build environment by removing specific files that could potentially interfere with the build process. This practice contributes to more consistent and reliable builds across different environments.

Key benefits:

1. Removes potential build artifacts that could cause inconsistencies.
2. Ensures a clean state before each build, reducing the risk of build failures due to leftover files.
3. Improves build reproducibility across different machines and environments.

---

888-888: Approval: Updated OSGI capability requirement

The change from ${maven.compiler.source} to ${maven.compiler.release} in the joda.osgi.require.capability property is a positive update. This aligns with the modern best practice for specifying Java versions in Maven builds, especially for Java 9+ projects.

Benefits of this change:

1. Provides better control over both the source and target versions of Java.
2. Ensures consistency between the compilation and runtime environments.
3. Aligns with the recommended approach for Java 9+ projects.

---

927-927: Approval: Updated Java compiler release version

Setting maven.compiler.release to 21 is consistent with the project's updated Java version requirement. This change:

1. Ensures that the project is compiled and runs with Java 21 features and APIs.
2. Provides better control over both the source and target versions of Java.
3. Aligns with the recommended approach for specifying Java versions in Maven for Java 9+ projects.

This setting, combined with the earlier updates, reinforces the project's commitment to using Java 21 as the baseline version.

---

901-901: Approval: Plugin version updates with a note

The updates to plugin versions are generally beneficial:

• maven-gpg-plugin: 3.2.7
• maven-javadoc-plugin: 3.10.1
• maven-project-info-reports-plugin: 3.6.2

These updates likely include bug fixes, security improvements, and potentially new features.

However, there's a note about an error in version 3.7.0 of maven-project-info-reports-plugin. It would be beneficial to:

1. Document the specific error encountered with version 3.7.0.
2. Create a reminder to check for a fix in future versions of this plugin.
3. Consider contributing the error details to the plugin's issue tracker if it hasn't been reported.

To verify if the issue with maven-project-info-reports-plugin 3.7.0 has been reported or fixed, you can run:

Also applies to: 904-904, 908-908