Merge pull request #33 from aereal/update-workflow

Update workflow

Author: aereal

Diff for: .github/workflows/ci.yml

@@ -7,45 +7,67 @@ on:
     branches:
       - main
 jobs:
-  lint:
-    runs-on: ubuntu-latest
+  ok:
+    needs:
+      - test-lint
+    if: ${{ failure() }}
+    runs-on: ubuntu-24.04
     steps:
-      - uses: actions/checkout@v4
-      - name: lint
-        uses: reviewdog/action-golangci-lint@v2
-  test:
+      - run: exit 1
+  test-lint:
     strategy:
       matrix:
         go_version:
-          - 1.21.x
-          - 1.20.x
-        os:
-          - ubuntu-latest
-    runs-on: ${{ matrix.os }}
-    steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-go@v5
-        with:
-          go-version: ${{ matrix.go_version }}
-      - name: test
-        run: go test -race -coverprofile=cover.out -covermode=atomic ./...
-      - uses: actions/upload-artifact@v3
-        if: strategy.job-index == 0
-        with:
-          name: coverage
-          path: ./cover.out
-          if-no-files-found: error
-  report-coverage:
-    runs-on: ubuntu-latest
+          - stable
+          - oldstable
+    runs-on: ubuntu-24.04
     permissions:
       actions: read
       contents: read
       pull-requests: write
-    needs:
-      - test
+    env:
+      AQUA_CONFIG: ${{ github.workspace }}/aqua.yaml
+      AQUA_POLICY_CONFIG: ${{ github.workspace }}/aqua-policy.yaml
     steps:
-      - uses: actions/checkout@v4
-      - uses: actions/download-artifact@v3
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
+        id: setup-go
+        with:
+          go-version: ${{ matrix.go_version }}
+      - run: go mod download
+      - name: build
+        run: go build -o /dev/null ./...
+      - name: test
+        id: test
+        continue-on-error: true
+        run: go test -race -coverprofile=cover.out -covermode=atomic ./...
+      - uses: k1LoW/octocov-action@1ad702b3118b6a055c00b01db68ca0d9f6641dbc # v1.4.0
+        if: ${{ matrix.go_version == 'stable' && steps.test.outcome == 'success' }}
+      - uses: aquaproj/aqua-installer@e2d0136abcf70b7a2f6f505720640750557c4b33 # v3.1.1
         with:
-          name: coverage
-      - uses: k1LoW/octocov-action@v0
+          aqua_version: v2.43.3
+      - run: aqua install
+      - name: golangci-lint
+        env:
+          _go_version: ${{ steps.setup-go.outputs.go-version }}
+        run: |
+          golangci-lint run \
+            --go "$_go_version" \
+            --out-format line-number \
+            --issues-exit-code 0 \
+            --config .golangci.yml \
+            1>lint-stdout.txt 2>/dev/stderr
+      - name: reviewdog
+        env:
+          REVIEWDOG_GITHUB_API_TOKEN: ${{ github.token }}
+        run: |
+          reviewdog \
+            -name golangci-lint \
+            -f golangci-lint \
+            -filter-mode nofilter \
+            -reporter github-pr-check \
+            -fail-level error \
+            < lint-stdout.txt
+      - name: fail
+        if: ${{ steps.test.outcome != 'success' }}
+        run: exit 1

Diff for: .golangci.yml

@@ -0,0 +1,80 @@
+---
+linters:
+  disable-all: true
+  enable:
+    - asasalint
+    - bidichk
+    - bodyclose
+    - contextcheck
+    - durationcheck
+    - errcheck
+    - errchkjson
+    - errorlint
+    - exhaustive
+    - gocheckcompilerdirectives
+    - gochecksumtype
+    - gosec
+    - gosimple
+    - govet
+    - ineffassign
+    - makezero
+    - nilerr
+    - reassign
+    - recvcheck
+    - spancheck
+    - staticcheck
+    - thelper
+    - unparam
+    - unused
+    - usetesting
+linters-settings:
+  errcheck:
+    check-type-assertions: true
+    check-blank: true
+    disable-default-exclusions: false
+  govet:
+    disable-all: true
+    enable:
+      - appends
+      - asmdecl
+      - assign
+      - atomic
+      - atomicalign
+      - bools
+      - buildtag
+      - cgocall
+      - composites
+      - copylocks
+      - deepequalerrors
+      - defers
+      - directive
+      - errorsas
+      - fieldalignment
+      - findcall
+      - framepointer
+      - httpresponse
+      - ifaceassert
+      - loopclosure
+      - lostcancel
+      - nilfunc
+      - nilness
+      - printf
+      - reflectvaluecompare
+      - shadow
+      - shift
+      - sigchanyzer
+      - slog
+      - sortslice
+      - stdmethods
+      - stdversion
+      - stringintconv
+      - structtag
+      - testinggoroutine
+      - tests
+      - timeformat
+      - unmarshal
+      - unreachable
+      - unsafeptr
+      - unusedresult
+      - unusedwrite
+      - waitgroup

Diff for: .vscode/settings.json

@@ -0,0 +1,4 @@
+{
+  "go.lintTool": "golangci-lint",
+  "go.lintFlags": ["--config=${workspaceFolder}/.golangci.yml"],
+}

Diff for: aqua-policy.yaml

@@ -0,0 +1,7 @@
+---
+# yaml-language-server: $schema=https://raw.githubusercontent.com/aquaproj/aqua/main/json-schema/policy.json
+registries:
+  - type: standard
+    ref: semver(">= 3.0.0")
+packages:
+  - registry: standard

Diff for: aqua.yaml

@@ -0,0 +1,8 @@
+---
+# yaml-language-server: $schema=https://raw.githubusercontent.com/aquaproj/aqua/main/json-schema/aqua-yaml.json
+registries:
+- type: standard
+  ref: v4.311.0 # renovate: depName=aquaproj/aqua-registry
+packages:
+  - name: golangci/[email protected]
+  - name: reviewdog/[email protected]

Diff for: middleware.go

@@ -173,7 +173,7 @@ func defaultReportRequestError(w http.ResponseWriter, err error) {
 	}
 	schemaErr := new(openapi3.SchemaError)
 	if errors.As(requestErr.Err, &schemaErr) {
-		_ = respondJSON(w, http.StatusBadRequest, rootError{
+		_ = respondJSON(w, http.StatusBadRequest, rootError{ //nolint:errcheck
 			Error: errorAggregate{
 				Request: toReport(schemaErr),
 			}})
@@ -188,7 +188,7 @@ func defaultReportResponseError(w http.ResponseWriter, err error) {
 		return
 	}
 	if schemaErr := new(openapi3.SchemaError); errors.As(responseErr.Err, &schemaErr) {
-		_ = respondJSON(w, http.StatusInternalServerError, rootError{
+		_ = respondJSON(w, http.StatusInternalServerError, rootError{ //nolint:errcheck
 			Error: errorAggregate{
 				Response: toReport(schemaErr),
 			}})
@@ -226,7 +226,7 @@ func respondErrorJSON(w http.ResponseWriter, statusCode int, err error) {
 	type payload struct {
 		Error *errorStruct
 	}
-	_ = respondJSON(w, statusCode, payload{Error: &errorStruct{Message: err.Error(), Kind: fmt.Sprintf("%T", err)}})
+	_ = respondJSON(w, statusCode, payload{Error: &errorStruct{Message: err.Error(), Kind: fmt.Sprintf("%T", err)}}) //nolint:errcheck
 }
 
 func respondJSON(w http.ResponseWriter, statusCode int, payload interface{}) error {

Diff for: middleware_test.go

@@ -49,18 +49,18 @@ type user struct {
 
 func TestWithValidation(t *testing.T) {
 	testCases := []struct {
-		name             string
 		handler          http.Handler
 		request          func(origin string) *http.Request
 		routeErrReporter func(w http.ResponseWriter, r *http.Request, err error)
 		reqErrReporter   func(w http.ResponseWriter, r *http.Request, err error)
 		resErrReporter   func(w http.ResponseWriter, r *http.Request, err error)
+		name             string
 	}{
 		{
 			name: "GET /users/{id}: ok",
 			handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.Header().Set("content-type", "application/json")
-				_ = json.NewEncoder(w).Encode(user{Name: "aereal", Age: 17, ID: "123"})
+				_ = json.NewEncoder(w).Encode(user{Name: "aereal", Age: 17, ID: "123"}) //nolint:errcheck,errchkjson
 			}),
 			request: func(origin string) *http.Request {
 				return mustRequest(newRequest(http.MethodGet, origin+"/users/123", map[string]string{}, ""))
@@ -70,7 +70,7 @@ func TestWithValidation(t *testing.T) {
 			name: "GET /users/{id}: response error",
 			handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.Header().Set("content-type", "application/json")
-				_ = json.NewEncoder(w).Encode(map[string]interface{}{"name": "aereal", "age": 17})
+				_ = json.NewEncoder(w).Encode(map[string]interface{}{"name": "aereal", "age": 17}) //nolint:errcheck,errchkjson
 			}),
 			request: func(origin string) *http.Request {
 				return mustRequest(newRequest(http.MethodGet, origin+"/users/123", map[string]string{}, ""))
@@ -80,14 +80,15 @@ func TestWithValidation(t *testing.T) {
 			name: "GET /users/{id}: response error with custom error handler",
 			handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.Header().Set("content-type", "application/json")
-				_ = json.NewEncoder(w).Encode(map[string]interface{}{"name": "aereal", "age": 17})
+				_ = json.NewEncoder(w).Encode(map[string]interface{}{"name": "aereal", "age": 17}) //nolint:errcheck,errchkjson
 			}),
 			request: func(origin string) *http.Request {
 				return mustRequest(newRequest(http.MethodGet, origin+"/users/123", map[string]string{}, ""))
 			},
 			resErrReporter: func(w http.ResponseWriter, r *http.Request, err error) {
 				requestNonNil := r != nil
-				_, errTypeOK := err.(*openapi3filter.ResponseError)
+				respErr := new(openapi3filter.ResponseError)
+				errTypeOK := errors.As(err, &respErr)
 				w.Header().Set("content-type", "text/plain")
 				w.WriteHeader(http.StatusInternalServerError)
 				_, _ = fmt.Fprintf(w, "the custom response validation error handler is called: errTypeOK=%t, request=%t", errTypeOK, requestNonNil)
@@ -97,7 +98,7 @@ func TestWithValidation(t *testing.T) {
 			name: "GET /unknown: find route error (not found)",
 			handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.Header().Set("content-type", "application/json")
-				_ = json.NewEncoder(w).Encode(user{Name: "aereal", Age: 17, ID: "123"})
+				_ = json.NewEncoder(w).Encode(user{Name: "aereal", Age: 17, ID: "123"}) //nolint:errcheck,errchkjson
 			}),
 			request: func(origin string) *http.Request {
 				return mustRequest(newRequest(http.MethodGet, origin+"/unknown", map[string]string{}, ""))
@@ -114,7 +115,7 @@ func TestWithValidation(t *testing.T) {
 			name: "GET /users: find route error (method not allowed)",
 			handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.Header().Set("content-type", "application/json")
-				_ = json.NewEncoder(w).Encode(user{Name: "aereal", Age: 17, ID: "123"})
+				_ = json.NewEncoder(w).Encode(user{Name: "aereal", Age: 17, ID: "123"}) //nolint:errcheck,errchkjson
 			}),
 			request: func(origin string) *http.Request {
 				return mustRequest(newRequest(http.MethodGet, origin+"/users", map[string]string{}, ""))
@@ -131,7 +132,7 @@ func TestWithValidation(t *testing.T) {
 			name: "POST /users: ok",
 			handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.Header().Set("content-type", "application/json")
-				_ = json.NewEncoder(w).Encode(user{Name: "aereal", Age: 17, ID: "123"})
+				_ = json.NewEncoder(w).Encode(user{Name: "aereal", Age: 17, ID: "123"}) //nolint:errcheck,errchkjson
 			}),
 			request: func(origin string) *http.Request {
 				return mustRequest(newRequest(http.MethodPost, origin+"/users", map[string]string{"content-type": "application/json"}, `{"name":"aereal","age":17}`))
@@ -156,7 +157,8 @@ func TestWithValidation(t *testing.T) {
 			},
 			reqErrReporter: func(w http.ResponseWriter, r *http.Request, err error) {
 				requestNonNil := r != nil
-				_, errTypeOK := err.(*openapi3filter.RequestError)
+				reqErr := new(openapi3filter.RequestError)
+				errTypeOK := errors.As(err, &reqErr)
 				w.Header().Set("content-type", "text/plain")
 				w.WriteHeader(http.StatusBadRequest)
 				_, _ = fmt.Fprintf(w, "the custom response validation error handler is called: errTypeOK=%t, request=%t", errTypeOK, requestNonNil)
@@ -177,10 +179,12 @@ func TestWithValidation(t *testing.T) {
 			if err != nil {
 				t.Fatal(err)
 			}
+			t.Cleanup(func() { gotResp.Body.Close() })
 			expectedResp, err := resumeResponse(t.Name(), gotResp)
 			if err != nil {
 				t.Fatal(err)
 			}
+			t.Cleanup(func() { expectedResp.Body.Close() })
 			if err := testResponse(expectedResp, gotResp); err != nil {
 				t.Error(err)
 			}
@@ -190,8 +194,8 @@ func TestWithValidation(t *testing.T) {
 
 func TestWithValidation_otel(t *testing.T) {
 	testCases := []struct {
-		name         string
 		buildOptions func(tp trace.TracerProvider) MiddlewareOptions
+		name         string
 		wantSpans    int
 	}{
 		{
@@ -226,15 +230,15 @@ func TestWithValidation_otel(t *testing.T) {
 
 			withOtel := func(next http.Handler) http.Handler {
 				return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-					ctx := otel.GetTextMapPropagator().Extract(r.Context(), propagation.HeaderCarrier(r.Header))
-					ctx, span := tp.Tracer("test").Start(ctx, fmt.Sprintf("%s %s", r.Method, r.URL.Path))
+					reqCtx := otel.GetTextMapPropagator().Extract(r.Context(), propagation.HeaderCarrier(r.Header))
+					reqCtx, span := tp.Tracer("test").Start(reqCtx, fmt.Sprintf("%s %s", r.Method, r.URL.Path))
 					defer span.End()
-					next.ServeHTTP(w, r.WithContext(ctx))
+					next.ServeHTTP(w, r.WithContext(reqCtx))
 				})
 			}
 			handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.Header().Set("content-type", "application/json")
-				_ = json.NewEncoder(w).Encode(user{Name: "aereal", Age: 17, ID: "123"})
+				_ = json.NewEncoder(w).Encode(user{Name: "aereal", Age: 17, ID: "123"}) //nolint:errcheck,errchkjson
 			})
 			srv := httptest.NewServer(withOtel(WithValidation(tc.buildOptions(tp))(handler)))
 			defer srv.Close()
@@ -328,8 +332,14 @@ func testResponse(expected, got *http.Response) error {
 	if got.StatusCode != expected.StatusCode {
 		return fmt.Errorf("StatusCode: got=%d expected=%d", got.StatusCode, expected.StatusCode)
 	}
-	expectedBody, _ := io.ReadAll(expected.Body)
-	gotBody, _ := io.ReadAll(got.Body)
+	expectedBody, err := io.ReadAll(expected.Body)
+	if err != nil {
+		return err
+	}
+	gotBody, err := io.ReadAll(got.Body)
+	if err != nil {
+		return err
+	}
 	defer func() {
 		// rewind body
 		expected.Body = io.NopCloser(bytes.NewReader(expectedBody))

Diff for: response_writer.go

@@ -19,7 +19,7 @@ func (rw *bufferingResponseWriter) emit() {
 	if rw.statusCode != 0 {
 		rw.rw.WriteHeader(rw.statusCode)
 	}
-	_, _ = rw.buf.WriteTo(rw.rw)
+	_, _ = rw.buf.WriteTo(rw.rw) //nolint:errcheck
 }
 
 func (rw *bufferingResponseWriter) Write(b []byte) (int, error) {