Skip to content

qonto/standards-insights

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

135 Commits

.github

.github

 
 

chart

chart

 
 

cmd

cmd

 
 

config

config

 
 

doc

doc

 
 

internal

internal

 
 

pkg

pkg

 
 

scripts

scripts

 
 

tls

tls

 
 

types

types

 
 

.gitignore

.gitignore

 
 

.golangci.yml

.golangci.yml

 
 

.goreleaser.yaml

.goreleaser.yaml

 
 

Dockerfile

Dockerfile

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

config.example.yaml

config.example.yaml

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

main.go

main.go

 
 

Repository files navigation

Standards Insights

Standards Insights allows you to follow your applications quality by executing rules (assertions) on them. Standards Insights can be run as a simple CLI or in a server mode where rules are periodically evaluated on projects and results exposed as Prometheus metrics that you can then used to build powerful reporting dashboards.

It also supports automatic discovery of projects to check. For example, if you're deploying your projects using ArgoCD, Standards Insights can automatically discover them.

Grafana Dashboard showing Standards Insights metrics

Quick start

Installation

  • Static binaries are available in the Github release page.
  • A Docker Image is available on ECR.
  • An Helm chart is available on ECR. You should use ociA://public.ecr.aws/qonto as repository in Helm in order to fetch it. The supported values are listed in the chart/values.yaml file.

Release

To create a new project release, just create and push a tag:

git tag -a <version>
git push --tags

Configuration

Standards Insights is configured through a yaml configuration file. The config.example.yaml file is a commented example of the available options.

CLI mode

Create a new config.yaml file containing:

rules:
  - name: golang-project
    files:
      - path: "go.mod"
        exists: true
  - name: go-version-latest
    files:
      - path: "go.mod"
        contains: "go 1.21"
  - name: go-main
    files:
      - path: "main.go"
        contains: "^(func main)"

checks:
  - name: go-version-latest
    operator: and
    labels:
      category: upgrade
      severity: critical
    rules:
      - go-version-latest
  - name: go-main
    operator: and
    labels:
      category: code-structure
      severity: minor
    rules:
      - go-main

groups:
  - name: golang
    checks:
      - go-version-latest
      - go-main
    when:
      - golang-project

We defined in this configuration 3 rules. They are assertions that will be validated later on your projects. In this example, the 3 rules are using the files module:

  • golang-project: verify that the file go.mod exists
  • go-version-latest: verify that the go.mod file contains the string go 1.21
  • go-main: verify that the file main.go contains the pattern ^(func main)

Rules modules are documented in the doc/rules directory.

We then define checks in the configuration. Checks are used to group similar rules together. They can also be configured with optional labels (category and severity in this example) that we will used later, when Standards Insights is run in daemon mode. In this example, the two checks contain only one rule each (go-version-latest and go-main). Checks supports 2 different operators to evaluate rules: and and or. and is the default operator and the check result will be successful if all the rules evaluate to true. or operator will mark the check as successful if at least one rule evaluates to true.

Finally, we configure groups: groups contains checks to execute on a project when a condition is true. In this example, the group named golang will only be executed on projects where golang-project is valid (so, when the go.mod file exists). Thanks to the when condition, we can specify which check should be executed on which project.

If you navigate in a Golang project (for example, the Standards Insights repository itself) and run standards-insights run --config config.yaml, you will get:

== Project standards-insights
✅ Check go-version-latest PASS (labels: map[category:upgrade severity:critical])
✅ Check go-main PASS (labels: map[category:code-structure severity:minor])

We see that both checks were successfully executed on this project.

You can also fetch a remote configuration file by passing to --config an HTTP url. In server mode, Standards Insights can expose its configuration file on /config.

Server mode

In server mode, Standards Insights will periodically:

  • Clone or pull the configured repositories from a Git server.
  • Execute the checks on them if they matches the groups when clause.
  • Report the checks results in Prometheus format on /metrics.

In order to discover projects to clone, you need to configure in your configuration file providers. Standards Insights supports a static provider and an argocd provider. Check the doc/providers for more information about providers. Let's use the static one for this example.

Add in your configuration these values:

http:
  host: 127.0.0.1
  port: 3000

providers:
  static:
    - name: "standards-insights"
      url: https://github.com/qonto/standards-insights.git
      branch: "main"
      path: "/tmp/projects/standards-insights"
      labels:
        team: sre

# git:
#   basic-auth:
#     username: oauth2
#     password: pass # You can use GIT_BASIC_AUTH_PASSWORD as well
#   private-key:
#     path: /home/mcorbin/.ssh/my_ssh_private_key
#     password: key-password # you can use GIT_PRIVATE_KEY_PASSWORD

interval: 300

labels:
  - category
  - severity
  • The http block is the http server configuration.
  • The provider block is used to configure providers. The static provider allows you to statically reference Git. projects to fetch and to configure where they should be cloned. Optional labels can be passed per project.
  • The git block can be used to configure Git authentication mechanisms.
  • The interval configuration is the interval in seconds between Standards Insights check loop.
  • The labels block contains a list of labels to extract from checks and projects and to use in the generated Prometheus metrics.

In summary, Standards Insights will with this configuration, every 300 seconds, clone the https://github.com/qonto/standards-insights.git repository and execute the configured checks on it.

Let's run the server with standards-insights server --config config.yaml. You should see in the logs:

time=2023-10-05T13:28:34.204+02:00 level=INFO msg="starting HTTP server on 127.0.0.1:3000"
time=2023-10-05T13:28:34.204+02:00 level=INFO msg="starting daemon"
time=2023-10-05T13:28:34.204+02:00 level=INFO msg="checking projects"
time=2023-10-05T13:28:34.886+02:00 level=INFO msg="checking project standards-insights"
time=2023-10-05T13:28:34.886+02:00 level=INFO msg="projects checked"

You can now open http://localhost:3000/metrics to see the application metrics. You will see alongside other metrics:

check_result_success{category="code-structure",name="go-main",project="standards-insights",severity="minor",team="sre"} 1
check_result_success{category="upgrade",name="go-version-latest",project="standards-insights",severity="critical",team="sre"} 1

Both checks were successful, so the value of the metric is 1. In case of failure, the value would be 0.

About

Ensure microservices are applying your latest standard to deliver consistent improvements across your organization

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

16 stars

Watchers

11 watching

Forks

0 forks
Report repository

Releases 15

v0.0.15 Latest
Apr 5, 2024
+ 14 releases

Packages

No packages published

Contributors 5

Languages