Welcome! We are glad that you want to contribute to our project and make it as easy and transparent as possible! If you aren't sure what to expect, here are some guidelines for our project so you feel more comfortable with how things will go.
If this is your first contribution to Trousseau, we encourage you to walk through this guideline helping you to setup your dev environment, make a change, test it and open a pull request about it.
The Trousseau community is governed by our Code of Conduct. This includes but isn't limited to: Trousseau GitHub repositories, Discussions, interaction on social media, conferences and meetups.
By contributing, you agree that your contributions will be licensed under its Apache License 2.0.
In short, when you submit code changes, your submissions are understood to be under the same Apache License 2.0 that covers the project. Feel free to contact the maintainers if that's a concern.
We welcome many different types of contributions includings:
- Answering questions on GitHub Discussions
- Documentation
- Social Media, blog post, webinar
- Issue triage, new feature, bug fix
- Build, CI/CD, QA help, release management
- Review Pull Request
- Web, logo, diagrams design
Not everything happens through a GitHub pull request. Do not hesitate to start a GitHub Discussions about any of the above topics or anything other relevant to the project.
We are using GitHub Issues to report and track bugs.
When writing a bug report, do it with details, background, and code sample to ease the understanding and help reproducing the unexpected behavior. Use one of the existing templates or follow some example like this is one or another one.
Great Bug Reports tend to have:
- a quick summary and/or background
- precise steps to reproduce (spending a few extra minutes to document might same hours of ping-pong)
- what you expected would happen
- what actually happens
- any hint towards a possible root cause and fix
NOTE: do not open a Security related bug or issue. We take security and users' trust seriously. If you believe you have found a security issue in Trousseau, please responsibly disclose by following the Security Policy.
We use GitHub to host code, track issues and feature requests, as well as accept pull requests. As a start, we have labelled good first issues for new contributors and help wanted issues suitable for any contributor who isn't a core maintainer.
Sometimes there won't be any issues with these labels. That's ok! There is likely something for you to work on. If you want to contribute but you don't know where to start or can't find a suitable issue, you can reach out via the GitHub Discussions for guidance.
Once you see an issue that you would like to work on, please post a comment saying that you want to work on it. Something as simple as "I want to work/help on this" is fine :)
The best way to reach us with a question when contributing is to ask on GitHub Discussions.
For any issues, your branch should be against the main branch except if explicit guidance within the GitHub Issues description.
Licensing is important to open source projects. It provides some assurances that the software will continue to be available based under the terms that the author(s) desired. We require that contributors sign off on commits submitted to our project's repositories. The Developer Certificate of Origin (DCO) is a way to certify that you wrote and have the right to contribute the code you are submitting to the project.
You sign-off by adding the following to your commit messages. Your sign-off must match the git user and email associated with the commit.
This is my commit message
Signed-off-by: Your Name <your.name@example.com>
Git has a -s
command line option to do this automatically:
git commit -s -m 'This is my commit message'
If you forgot to do this and have not yet pushed your changes to the remote repository, you can amend your commit with the sign-off by running
git commit --amend -s
For none related code changes like like documentation improvement, misspellings and such, you can submit a PR directly including a clear descriptions.
For any code changes, all pull request have to be linked with a GitHub Issue. If not, please make an issue first, explain the problem or motivation for the code change you are proposing. When the solution isn't solution is not straightforward, make sure to outline the expected outcome with examples. Your PR will go smoother if the solution is agreed upon via the GitHub Issue before you have spent a lot of time implementing it.
When you submit your pull request, or you push new commits to it, our GitHub Actions will run some checks on your new code. We require that your pull request passes these checks, but we also have more criteria than just that before we can accept and merge it.
-
You create a draft or WIP pull request. Reviewers will ignore it mostly unless you mention someone and ask for help. Feel
free to open one and use the pull request to see if the CI passes. Once you are ready for a review, remove the WIP and leave a comment that it's ready for review.If you create a regular pull request, a reviewer won't wait to review it.
-
A reviewer will assign themselves to the pull request. If you don't see anyone assigned after 3 business days, you can leave a comment asking for a review. Sometimes we have busy, sick, vacation days, so a little patience is appreciated ;)
-
The reviewer will leave feedback.
- Suggestions might be shared that you may decide to incorporate into your pull request or not without further comments.
- It can help to use a 👍 or a task list/checkbox to track if you have implemented any of the suggestions.
- It is okay to clarify if you are being told to make a change or if it is a suggestion.
-
After you have made the changes (in new commits please!), leave a comment or check the task list. If 3 business days go by with no review, it is ok to bump.
-
If your commits does not content all the suggestions, please open an issue with the title Follow-On PR #00. This will allow to pursue or not these suggestions if needed.
-
If your pull request will require a Documentation update, make sure to provide a a extract of what needs to be changed with the proposed changed. Best would be to clone the wiki and perform a parallel pull request.
-
When a pull request has been approaved, the reviewer will squash and merge your commits. If you prefer to rebase your own commits, at any time leave a comment on the pull request to let them know that.
At this point your changes are available in the main release of Trousseau! At this stage, the changes are not yet push tagged container image and user will need to build from sources to benefit of your latest and greatest contribution. The Trousseau maintainers might invite you to be part of the Contributors team - it's up to you to accept ;)
The project is using standard Go error handling with the following rules:
- Each error has to be wrapped with meaningful context:
fmt.Errorf("...:%w", err)
- Errors without any validation in the code base should be in-line:
errors.New()
orfmt.Errorf()
- Errors with validation must be package private structs with constructor in a separated file:
type customError struct { error } func (e *customError) Error() string { return fmt.Sprintf("custom error %s", e.error) } func newCustomError(err error) error { return &customError{error: err} }
_, ok := err.(*customError)
- Errors require validation outside of it's package have to publish validation function(s):
type customErrorType interface { customErrorType() } type customError struct { error customErrorType //lint:ignore U1000 type check } func (e *customError) Error() string { return fmt.Sprintf("custom error %s", e.error) } func newCustomError(err error) error { return &customError{error: err} } func IsCustomError(err error) bool { return errors.As(err, new(customErrorType)) }
package.IsCustomError(err)
The project is using klog
on top of zap
logging. The log engine is configured via command line arguments:
--v
verbosity of info logs, default value is 3, allowed values are 0-5.--zap-encoder
log message encoder, default value isconsole
, allowed values areconsole
,json
.
Logging rules:
- Fatal: core component stopped to work, better to terminate the application
- Error: application doesn't work properly, operator has to wake up and fix the problem
- Info: must to know information, included recoverable errors, this level ignores
--v
settings - V(1-3).Info: good to know information
- V(4-5).Info: debug logs, do not use in production, may contains sensitive information