CI: Add dependency metrics (#35722)

* ci(frontend-metrics): introduce outdated and vulnerable dependency commands * ci(frontend-metrics): get total built bundle size in kb * ci(frontend-metrics): print total bundle folder size * chore: fix spelling * ci(frontend-metrics): easily count the total for vulnerabilities Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com> * chore(frontend-metrics): fix for shellcheck to pass * fix(frontend-metrics): capture each line of vulnerability audit output * ci(frontend-metrics): fix commas in metrics output * ci(frontend-metrics): call node modules directly as yarn returns exit code 2 in linux Co-authored-by: Hugo Häggmark <hugo.haggmark@grafana.com>
2025-02-25 18:55:37 -06:00 · 2021-06-29 09:29:26 +02:00 · 2021-06-29 09:29:26 +02:00 · 24aaeb58dc
commit 24aaeb58dc
parent 228372522b
1 changed files with 20 additions and 3 deletions
--- a/scripts/ci-frontend-metrics.sh
+++ b/scripts/ci-frontend-metrics.sh
@ -1,16 +1,23 @@
 #!/bin/bash
 set -e

-ERROR_COUNT="$(yarn run tsc --project tsconfig.json --noEmit --strict true | grep -oP 'Found \K(\d+)')"
+ERROR_COUNT="$(./node_modules/.bin/tsc --project tsconfig.json --noEmit --strict true | grep -oP 'Found \K(\d+)')"
 DIRECTIVES="$(grep -r -o  directive public/app/ | wc -l)"
 CONTROLLERS="$(grep -r -oP 'class .*Ctrl' public/app/ | wc -l)"
 STORIES_COUNT="$(find ./packages/grafana-ui/src/components -name "*.story.tsx" | wc -l)"
 MDX_COUNT="$(find ./packages/grafana-ui/src/components -name "*.mdx" | wc -l)"
 LEGACY_FORMS="$(grep -r -oP 'LegacyForms;' public/app | wc -l)"

-STRICT_LINT_RESULTS="$(yarn run eslint --rule '@typescript-eslint/no-explicit-any: ["error"]' --format unix ./public/ || true)"
+STRICT_LINT_RESULTS="$(./node_modules/.bin/eslint --rule '@typescript-eslint/no-explicit-any: ["error"]' --format unix --ext .ts,.tsx ./public || true)"
 STRICT_LINT_EXPLICIT_ANY="$(echo "${STRICT_LINT_RESULTS}" | grep -o "no-explicit-any" | wc -l)"

+TOTAL_BUNDLE="$(du -sk ./public/build | cut -f1)"
+OUTDATED_DEPENDENCIES="$(yarn outdated | wc -l | xargs)"
+VULNERABILITY_AUDIT="$(yarn audit | grep 'Severity:' | grep -Eo '[0-9]{1,4}')"
+LOW_VULNERABILITIES="$(echo "${VULNERABILITY_AUDIT}" | sed -n '1p')"
+MED_VULNERABILITIES="$(echo "${VULNERABILITY_AUDIT}" | sed -n '2p')"
+HIGH_VULNERABILITIES="$(echo "${VULNERABILITY_AUDIT}" | sed -n '3p')"
+
 echo -e "Typescript errors: $ERROR_COUNT"
 echo -e "Directives: $DIRECTIVES"
 echo -e "Controllers: $CONTROLLERS"
@ -18,6 +25,11 @@ echo -e "Stories: $STORIES_COUNT"
 echo -e "Documented stories: $MDX_COUNT"
 echo -e "Legacy forms: $LEGACY_FORMS"
 echo -e "TS Explicit any: $STRICT_LINT_EXPLICIT_ANY"
+echo -e "Total bundle folder size: $TOTAL_BUNDLE"
+echo -e "Total outdated dependencies: $OUTDATED_DEPENDENCIES"
+echo -e "Low vulnerabilities: $LOW_VULNERABILITIES"
+echo -e "Med vulnerabilities: $MED_VULNERABILITIES"
+echo -e "High vulnerabilities: $HIGH_VULNERABILITIES"

 echo "Metrics: {
  \"grafana.ci-code.strictErrors\": \"${ERROR_COUNT}\",
@ -26,5 +38,10 @@ echo "Metrics: {
  \"grafana.ci-code.grafana-ui.stories\": \"${STORIES_COUNT}\",
  \"grafana.ci-code.grafana-ui.mdx\": \"${MDX_COUNT}\",
  \"grafana.ci-code.legacyForms\": \"${LEGACY_FORMS}\",
-  \"grafana.ci-code.strictLint.noExplicitAny\": \"${STRICT_LINT_EXPLICIT_ANY}\"
+  \"grafana.ci-code.strictLint.noExplicitAny\": \"${STRICT_LINT_EXPLICIT_ANY}\",
+  \"grafana.ci-code.bundleFolderSize\": \"${TOTAL_BUNDLE}\",
+  \"grafana.ci-code.dependencies.outdated\": \"${OUTDATED_DEPENDENCIES}\",
+  \"grafana.ci-code.dependencies.vulnerabilities.low\": \"${LOW_VULNERABILITIES}\",
+  \"grafana.ci-code.dependencies.vulnerabilities.medium\": \"${MED_VULNERABILITIES}\",
+  \"grafana.ci-code.dependencies.vulnerabilities.high\": \"${HIGH_VULNERABILITIES}\"
 }"