 |
VOOZH | about |
|
VOOZH | about |
This page documents the static analysis tools, code quality enforcement mechanisms, and automated validation workflows used in the Maho codebase. These systems ensure code correctness, consistency, and adherence to modern PHP standards through automated checks and baselines.
For information about the testing framework (Pest), see 11.4 Testing with Pest For information about the CI/CD pipeline architecture, see 11.2 CI/CD Pipeline
Maho employs a multi-layered approach to code quality, combining static analysis, modernization rules, and style fixers. The project targets PHP 8.3+ compatibility .github/workflows/syntax-php.yml19 and enforces strict syntax checks for both PHP and XML files.
The following diagram illustrates how different tools interact with the codebase to enforce quality gates during development and in the GitHub Actions CI environment.
Code Quality Pipeline Architecture
Sources: .github/workflows/syntax-php.yml12-20 .github/workflows/syntax-xml.yml12-14 .php-cs-fixer.php7-11 .github/workflows/rector.yml39-41
PHPStan is the primary tool for detecting bugs and type inconsistencies. It ensures that modern type hints and strict PHP 8.3+ logic are respected across the platform.
PHPStan runs in the CI pipeline across multiple PHP versions (8.3, 8.4, 8.5) to ensure cross-version compatibility .github/workflows/phpstan.yml19 It utilizes a result cache stored in the var directory to speed up subsequent runs .github/workflows/phpstan.yml43-52 The analysis is executed via vendor/bin/phpstan.phar analyze with high verbosity and Xdebug disabled for performance .github/workflows/phpstan.yml54
The project utilizes configuration files (e.g., .phpstan.dist.neon) and baselines to manage legacy technical debt while enforcing high standards on new code. These files are excluded from standard exports to keep the production package lean .gitattributes7-8
Sources: .github/workflows/phpstan.yml1-62 .gitattributes7-8 .gitignore36-40
Rector is used to automatically upgrade the codebase to support modern PHP features and maintain consistency with Maho's modernization goals.
Maho uses Rector to handle large-scale refactorings that would be error-prone if done manually. The configuration in .rector.php (referenced in .github/workflows/rector.yml40) handles tasks such as:
php vendor/bin/rector -c .rector.php --dry-run to ensure no regressions are introduced .github/workflows/rector.yml40Sources: .github/workflows/rector.yml1-41 .gitattributes9
Maho enforces a strict coding style and performs automated syntax validation for both PHP and XML files.
The coding style is enforced via friendsofphp/php-cs-fixer. The configuration in .php-cs-fixer.php adopts the @PER-CS2.0 rule set .php-cs-fixer.php13 It also enforces:
&& instead of and) .php-cs-fixer.php14-17app/, lib/, public/, and tests/ directories while ignoring VCS and dot files .php-cs-fixer.php32-41Automated workflows perform "lint" checks on every pull request to catch trivial errors:
php -l to check changed .php and .phtml files across PHP 8.3, 8.4, and 8.5 .github/workflows/syntax-php.yml19 .github/workflows/syntax-php.yml41-57xmllint from libxml2-utils to validate the integrity of configuration and layout files .github/workflows/syntax-xml.yml35-44 .github/workflows/syntax-xml.yml51-58Sources: .github/workflows/syntax-php.yml1-65 .github/workflows/syntax-xml.yml1-60 .php-cs-fixer.php1-42
Beyond general static analysis, Maho implements domain-specific validation workflows.
Maho enforces a specific copyright header for all modified files. The Copyright Check workflow validates that every changed .js, .php, or .phtml file contains the Maho copyright notice .github/workflows/copyright.yml76-86
Copyright (c) (([VALID_START_YEARS])-(CURRENT_YEAR|NEXT_YEAR)|(CURRENT_YEAR|NEXT_YEAR)) Maho (https://mahocommerce.com) .github/workflows/copyright.yml65Two dedicated workflows ensure translation health:
./maho dev:translations:missing to detect translatable strings in changed files that lack CSV entries .github/workflows/check-missing-translations.yml37./maho dev:translations:unused to find obsolete entries in translation files .github/workflows/check-unused-translations.yml35Sources: .github/workflows/copyright.yml1-100 .github/workflows/check-missing-translations.yml1-46 .github/workflows/check-unused-translations.yml1-43
The transition to Doctrine DBAL and the Maho\Db\Select wrapper demonstrates how code quality tools manage complex architectural shifts.
Database Layer Quality Architecture
mysql-8.4, mariadb-10.11, pgsql-14, and sqlite .github/workflows/pest.yml19-56Maho\Db\Select are analyzed by PHPStan to ensure they correctly interface with Doctrine DBAL 4.4 types.Sources: .github/workflows/pest.yml13-56 .github/workflows/pest.yml101-125 .php-cs-fixer.php13-17
Refresh this wiki