A Gradle plugin to easily apply the same setup of static analysis tools across different Android or Java projects.
Gradle supports many popular static analysis (Checkstyle, PMD, FindBugs, etc) via a set of built-in
plugins. Using these plugins in an Android module will require an additional setup to compensate for the differences between
the model adopted by the Android plugin compared to the the Java one.
The gradle-static-analysis-plugin aims to provide:
- flexible, configurable penalty strategy for builds,
- easy, Android-friendly integration for all static analysis,
- convenient way of sharing same setup across different projects,
- healthy, versionable and configurable defaults.
The plugin is released in jcenter and can be included as a classpath dependency:
buildscript {
repositories {
jcenter()
}
dependencies {
classpath 'com.novoda:gradle-static-analysis-plugin:0.4.1'
}
}and then apply the plugin via:
apply plugin: 'com.novoda.static-analysis'A typical configuration for the plugin will look like:
staticAnalysis {
penalty {
maxErrors = 0
maxWarnings = 100
}
checkstyle {
configFile project.file('path/to/modules.xml')
}
pmd {
ruleSetFiles = project.files('path/to/rules.xml')
}
findbugs {}
}Users can define maximum amount of warnings and errors tolerated in a build via the gradle configuration:
staticAnalysis {
penalty {
maxErrors = 10
maxWarnings = 10
}
}Violations are then collected while running all the static analysis tools enabled in the project and split between errors and warnings. Only in the end they are cumulatively evaluated against the thresholds provided in the configuration to decide whether the build should fail or not.
Build logs will show an overall report of how many violations have been found during the analysis and the links to the relevant html reports, for instance:
> PMD rule violations were found (2 errors, 2 warnings). See the reports at:
- file:///foo/project/build/reports/pmd/main.html
- file:///foo/project/build/reports/pmd/main2.html
- file:///foo/project/build/reports/pmd/main3.html
- file:///foo/project/build/reports/pmd/main4.html
It's possible to specify a custom renderer for the report urls in the logs via the logs extension. This can be useful in CI
environments, where the local paths are not reachable directly. For instance the snippet below will replace the base url with
one of your choice:
staticAnalysis {
...
logs {
reportBaseUrl "http://ci.mycompany.com/job/myproject/ws/app/build/reports"
}
}so that in the logs you will see the report urls printed as
> Checkstyle rule violations were found (0 errors, 1 warnings). See the reports at:
- http://ci.mycompany.com/job/myproject/ws/app/build/reports/checkstyle/main.html
More info on the topic can be found in the LogsExtension
groovydoc.
Android projects use a gradle model that is not compatible with the Java one, supported by the built-in static analysis tools plugins.
Applying gradle-static-analysis-plugin to your Android project will make sure all the necessary tasks are created and correctly configured
without any additional hassle.
You can specify custom patterns to exclude specific files from the static analysis. All you have to do is to specify exclude
in the configuration of your tool of choice:
staticAnalysis {
findbugs {
exclude '**/*Test.java' // file pattern
exclude project.fileTree('src/test/java') // entire folder
exclude project.file('src/main/java/foo/bar/Constants.java') // specific file
exclude project.sourceSets.main.java.srcDirs // entire source set
}
}Sometimes using exclude filters could be not enough. When using the plugin in an Android project you may want to consider
only one specific variant as part of the analysis. The plugin provides a way of defining which Android variant should be included
via the includeVariants method added to each tool extension. Eg:
staticAnalysis {
findbugs {
includeVariants { variant ->
variant.name.equals('debug') // only the debug variant
}
}
}
The plugin is under early development and to be considered in pre-alpha stage.
| Tool | Android | Java | Documentation |
|---|---|---|---|
Checkstyle |
✅ | ✅ | Coming Soon |
PMD |
✅ | ✅ | Coming Soon |
FindBugs |
✅ | ✅ | Coming Soon |
The plugin can consume rules (eg: configuration files for Checkstyle or PMD, default exclude filters, etc) via a separate artifact you can share across projects.