HIP: Add Exclude File Option to Helm Lint Command #353
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,62 @@ | ||
| --- | ||
| hip: 0019 | ||
| title: "Add Exclude File Option to Helm Lint Command" | ||
| authors: Danilo Patrucco | ||
| created: "2024-07-03" | ||
| type: "feature" | ||
| status: "draft" | ||
| --- | ||
|
|
||
| ## Abstract | ||
| This proposal introduces enhancements to the `helm lint` command, allowing the exclusion of specific files or patterns through a `.helmlintconfig.yaml` file. Additionally, a `--lint-config-file` flag will be added to specify alternative locations for the `.helmlintconfig.yaml` file. This feature is particularly useful in projects with multiple sub-charts. An environment variable `HELM_LINT_CONFIG_FILE` will also be introduced to mirror the functionality of the flag. | ||
|
|
||
| ## Motivation | ||
| In large Helm charts, maintainers often encounter scenarios where certain files or configurations, while deviating from standard linting rules, are nonetheless acceptable. The current helm lint process indiscriminately evaluates all files within a chart, leading to the generation of potentially irrelevant warnings or errors. Introducing options to exclude specific files and to specify locations for config files would greatly streamline the linting process. This adjustment would especially benefit situations where imported subcharts are flagged with low-priority lint errors that maintainers would prefer to suppress. | ||
|
|
||
| ## Rationale | ||
| The aim of this proposal is to grant developers and integrators more control over the linting process by enabling: | ||
| - Exclusions for files imported or managed by third parties that are not directly editable. | ||
| - Exclusions for files that may not adhere to static linting rules. | ||
| - Exclusions for files containing intentional deviations from standard practices due to specific deployment scenarios. | ||
|
|
||
| The `.helmlintconfig.yaml` file will support simple patterns for matching files and directories, enhancing ease of management. The `--lint-config-file` flag will facilitate centralized management of lint exclusions in complex projects. | ||
|
|
||
| ## Specification | ||
| ### `.helmlintconfig.yaml` File Format | ||
| The `.helmlintconfig.yaml` file enables chart developers to specify glob patterns for both file paths and error stirngs to exclude from linting. The format is YAML, with patterns specified under a `lintConfig` key, making future extensions for additional configurations feasible. | ||
|
|
||
| #### Example | ||
| ``` | ||
| # .helmlintconfig.yaml file example | ||
| lintIgnore: | ||
| - pathIgnore: "migrations/templates/job.yaml" # Ignores all errors from this file | ||
| - errorIgnore: "chart metadata is missing these dependencies**" # Ignores all icon errors | ||
| - pathIgnore: "gitlab/templates/shared-secrets/self-signed-cert-job.yml" | ||
| errorIgnore: "<include 'fullname' .>" # Ignores this specific error but not other errors in the file | ||
| ``` | ||
|
|
||
| ### Command Behavior | ||
| When `helm lint` is executed, it checks for the presence of a `.helmlintconfig.yaml` file in the chart directory or at a location specified by the `--lint-config-file` flag or by the environment variable `HELM_LINT_CONFIG_FILE`. The command then parses this file to exclude any files or directories matching the patterns specified, including specific error lines. | ||
|
|
||
| ## Backwards Compatibility | ||
| This proposal introduces no breaking changes. Charts without a `.helmlintconfig.yaml` file or those not using the `--lint-config-file` flag will function as before. | ||
|
|
||
| ## Security Implications | ||
| No significant security implications are expected as the `.helmlintconfig.yaml` file is processed locally by `helm lint`, without modifying chart content or involving network activity. | ||
|
|
||
| ## How to Teach This | ||
| Documentation for the `.helmlintconfig.yaml` file and the `--lint-config-file` flag will be integrated into the official Helm documentation under the `helm lint` section. Detailed examples and common patterns will be provided to assist new users. | ||
|
|
||
| ## Reference Implementation | ||
| PR #[13257](https://github.com/helm/helm/pull/13257) created in the Helm/helm repository in gitlab | ||
|
There was a problem hiding this comment. n.b. this PR will need some significant changes to catch up with the current design as described here in HIP-0019 There was a problem hiding this comment. this i will leave untouched if it's ok with you, since we put the PR in draft |
||
|
|
||
| ## Open Issues | ||
| - Developing an Effective and User-Friendly Pattern Syntax: We are considering the design of a flexible and intuitive pattern syntax for the `.helmlintconfig.yaml` file. This syntax would ideally support rule-specific configurations and exclusions, allowing users to finely control lint behaviors on a per-rule basis. | ||
|
There was a problem hiding this comment. this piece is not self-evident to me, can we add a hypothetical such as " |
||
| - In-File Annotations for Excluding Chart Sections: Exploring the possibility of in-file annotations that would let developers temporarily exclude specific sections of a chart from linting. This feature would provide granular control directly within Helm chart files. | ||
|
|
||
| ## Rejected Ideas | ||
|
There was a problem hiding this comment. Providing rule specific excludes and configurations, and composing configuration from "default" configuration e.g. similar to https://yamllint.readthedocs.io/en/stable/configuration.html#extending-the-default-configuration Helm today doesn't "name" its lint rules, and changing the code/structure to support the above can be extended later There was a problem hiding this comment. Done, let me know if it's ok There was a problem hiding this comment. oops, sorry, I mean we should add these to the "rejected ideas":
|
||
| - Rule Naming and Configurations: Currently, Helm does not support named lint rules. Introducing named rules is a foundational step that would enable us to implement more sophisticated configuration features, such as rule-specific exclusions and settings. Naming rules would facilitate clearer and more maintainable configurations, laying the groundwork for future enhancements. | ||
| - Composing configuration from "default" configuration (e.g. similar to https://yamllint.readthedocs.io/en/stable/configuration.html#extending-the-default-configuration), by adding additional files that reference a default configuration and extend it. | ||
|
|
||
| ## References | ||
| - This proposal aligns with practices outlined in [HIP-0001](https://github.com/helm/community/blob/master/hips/hip-0001.md). | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
perhaps a format more like (bikeshedding hard here):
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I modified this section a little, but kept it similar to our suggestion because an error (the same error specifically) can occur in multiple charts / sub-charts, and connecting it to a file path would be beneficial (sorry for the bikeshedding here)