linter for Postgres migrations
Prevent unexpected downtime caused by database migrations.
Also it seemed like a nice project to spend more time with Rust.
Note: due to squawk's dependency on
libpg_query, squawk
only supports Linux and macOS
```shell npm install -g squawk-cli
cargo install squawk
https://github.com/sbdchd/squawk/releases ```
```shell ❯ squawk example.sql example.sql:2:1: warning: prefer-text-field
2 | -- 3 | -- Create model Bar 4 | -- 5 | CREATE TABLE "core_bar" ( 6 | "id" serial NOT NULL PRIMARY KEY, 7 | "alpha" varchar(100) NOT NULL 8 | );
note: Changing the size of a varchar field requires an ACCESS EXCLUSIVE lock. help: Use a text field with a check constraint.
example.sql:9:2: warning: require-concurrent-index-creation
9 | 10 | CREATE INDEX "fieldnameidx" ON "tablename" ("fieldname");
note: Creating an index blocks writes. note: Create the index CONCURRENTLY.
example.sql:11:2: warning: disallowed-unique-constraint
11 | 12 | ALTER TABLE tablename ADD CONSTRAINT fieldnameconstraint UNIQUE (fieldname);
note: Adding a UNIQUE constraint requires an ACCESS EXCLUSIVE lock which blocks reads. help: Create an index CONCURRENTLY and create the constraint using the index.
example.sql:13:2: warning: adding-field-with-default
13 | 14 | ALTER TABLE "core_recipe" ADD COLUMN "foo" integer DEFAULT 10;
note: In Postgres versions <11 adding a field with a DEFAULT requires a table rewrite with an ACCESS EXCLUSIVE lock. help: Add the field as nullable, then set a default, backfill, and remove nullabilty. ```
squawk --help``` squawk Find problems in your SQL
USAGE: squawk [FLAGS] [OPTIONS] [paths]... [SUBCOMMAND]
FLAGS: -h, --help Prints help information
--list-rules
List all available rules
-V, --version
Prints version information
OPTIONS:
--dump-ast
-e, --exclude <exclude>...
Exclude specific warnings
For example: --exclude=require-concurrent-index-creation,ban-drop-database
--explain <explain>
Provide documentation on the given rule
--reporter <reporter>
Style of error reporting [possible values: Tty, Gcc, Json]
ARGS:
SUBCOMMANDS: help Prints this message or the help of the given subcommand(s) upload-to-github Comment on a PR with Squawk's results ```
Individual rules can be disabled via the --exclude flag
shell
squawk --exclude=adding-field-with-default,disallowed-unique-constraint example.sql
require-concurrent-index-creationEnsure all index creations use the CONCURRENTLY option.
This rule ignores indexes added to tables created in the same transaction.
During a normal index creation updates are blocked. CONCURRENTLY avoids the
issue of blocking.
https://www.postgresql.org/docs/current/sql-createindex.html#SQL-CREATEINDEX-CONCURRENTLY
constraint-missing-not-validCheck that all new constraints have NOT VALID.
By default new constraints require a table scan and block writes to the
table. Using NOT VALID with a later VALIDATE CONSTRAINT call prevents the
table scan and results in the validation step only requiring a SHARE UPDATE EXCLUSIVE lock.
https://www.postgresql.org/docs/current/sql-altertable.html#SQL-ALTERTABLE-NOTES
adding-field-with-defaultOn Postgres versions less than 11, adding a field with a DEFAULT requires a
table rewrite with an ACCESS EXCLUSIVE lock.
https://www.postgresql.org/docs/10/sql-altertable.html#SQL-ALTERTABLE-NOTES
changing-column-typeChanging a column type requires an ACCESS EXCLUSIVE lock on the table which blocks reads.
Changing the type of the column may also break other clients reading from the table.
https://www.postgresql.org/docs/current/sql-altertable.html#SQL-ALTERTABLE-NOTES
adding-not-nullable-fieldA NOT NULL constraint requires a table scan and the ALTER TABLE requires
an ACCESS EXCLUSIVE lock.
Usually this is paired with a DEFAULT which has issues on version less than
\11. See the adding-field-with-default rule.
renaming-columnRenaming a column may break existing clients.
renaming-tableRenaming a table may break existing clients.
disallowed-unique-constraintAdding a UNIQUE constraint requires an ACCESS EXCLUSIVE lock which blocks reads.
Instead create an index CONCURRENTLY and create the CONSTRAINT USING the index.
https://www.postgresql.org/docs/current/sql-altertable.html
ban-drop-databaseDropping a database may break existing clients.
prefer-text-fieldChanging the size of a varchar field requires an ACCESS EXCLUSIVE lock.
Using a text field with a CHECK CONSTRAINT makes it easier to change the
max length. See the constraint-missing-not-valid rule.
Squawk works as a CLI tool but can also create comments on GitHub Pull
Requests using the upload-to-github subcommand.
Here's an example comment created by squawk using the example.sql in the repo:
https://github.com/sbdchd/squawk/pull/14#issuecomment-647009446
Squawk needs a corresponding GitHub App so it can talk to GitHub.
Create the app
head over to https://github.com/settings/apps/new
add an app name & homepage url
Uncheck the active checkbox under Webhook
add permissions
| name | kind | why | | ------------- | ----- | ----------------- | | Pull Requests | Write | to comment on PRs |
hit create and copy the App ID under the "About" section
url should be: https://github.com/settings/apps/$YOURAPPNAME
Head down the the bottom of the page under the "Private Keys" section and hit "Generate a private key"
The key should automatically download after a couple seconds. Hold onto this key, we'll need it later.
Now we have an App ID and a Private Key, now we need to install the app
Install the app & get the Install ID
Head to https://github.com/settings/apps/$YOUR_APP_NAME/installations and hit "Install"
GitHub should have redirected you to the https://github.com/settings/installations/$INSTALL_ID page where $INSTALL_ID is some number.
Save this ID for later.
Now we have our SQUAWK_GITHUB_APP_ID, SQUAWK_GITHUB_PRIVATE_KEY,
SQUAWK_GITHUB_INSTALL_ID.
Squawk needs the pull request related values: SQUAWK_GITHUB_REPO_NAME,
SQUAWK_GITHUB_REPO_OWNER, and SQUAWK_GITHUB_PR_NUMBER.
Where to find these varies depending how you're running squawk, but for the next step I'm assuming you're running Squawk as a CircleCI job.
Finding the Pull Request variables
https://circleci.com/docs/2.0/env-vars/#built-in-environment-variables
CIRCLE_PULL_REQUEST has the content we need
example: https://github.com/recipeyak/recipeyak/pull/567
Now we need to split this to get the repo name, repo owner, and pull requeset id.
With a bit of help from
```sh echo "https://github.com/recipeyak/recipeyak/pull/567" | awk -F/ '{print $4 " " $5 " " $7}'
recipeyak recipeyak 567 ```
sh
SQUAWK_GITHUB_REPO_OWNER=$(echo $CIRCLE_PULL_REQUEST | awk -F/ '{print $4}')
SQUAWK_GITHUB_REPO_NAME=$(echo $CIRCLE_PULL_REQUEST | awk -F/ '{print $5}')
SQUAWK_GITHUB_PR_NUMBER=$(echo $CIRCLE_PULL_REQUEST | awk -F/ '{print $7}')
Conclusion
Wrapping it all up we should have the following env vars:
```sh SQUAWKGITHUBAPPID= # fill in with id found in step 5 SQUAWKGITHUBINSTALLID= # fill in with id found in step 7
SQUAWKGITHUBPRIVATE_KEY=$(cat ./cool-bot-name.private-key.pem)
SQUAWKGITHUBREPOOWNER=$(echo $CIRCLEPULLREQUEST | awk -F/ '{print $4}') SQUAWKGITHUBREPONAME=$(echo $CIRCLEPULLREQUEST | awk -F/ '{print $5}') SQUAWKGITHUBPRNUMBER=$(echo $CIRCLEPULL_REQUEST | awk -F/ '{print $7}') ```
We can pass this into the env before running squawk or we can translate them to the command line flag. What's ever easiest for you.
An example run will look like the following (assuming the env vars are set):
sh
squawk upload-to-github example.sql
which creates a comment like the following:
https://github.com/sbdchd/squawk/pull/14#issuecomment-647009446
shell
cargo install
cargo run
./s/test
./s/lint
./s/fmt
Cargo.toml and follow the cargo release stepspackage.json and follow the npm stepssquawk wraps calls to libpgquery-sys in a safe interface and parses the JSON into eaiser to work with structures. libpgquery-sys in turn uses bindgen to bind to libpg_query, which itself wraps Postgres' SQL parser in a bit of C code that outputs the parsed AST into a JSON string.
Squawk then runs the rule functions over the parsed AST, gathers and pretty prints the rule violations.