zsp/everything-claude-code
1
0
Fork 0
mirror of https://github.com/affaan-m/everything-claude-code.git synced 2026-03-30 13:43:26 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
c0fdd89c4957c2abcbe5cfe424027398b8e65fd1
everything-claude-code/docs/zh-CN/skills/springboot-verification/SKILL.md
zdoc 88054de673 docs: Add Chinese (zh-CN) translations for all documentation 
* docs: add Chinese versions docs

* update

---------

Co-authored-by: neo <neo.dowithless@gmail.com>
2026-02-05 05:57:54 -08:00

2.0 KiB
Raw Blame History

name: springboot-verification description: Verification loop for Spring Boot projects: build, static analysis, tests with coverage, security scans, and diff review before release or PR.

Spring Boot 验证循环

在提交 PR 前、重大变更后以及部署前运行。

阶段 1构建

mvn -T 4 clean verify -DskipTests
# or
./gradlew clean assemble -x test

如果构建失败,停止并修复。

阶段 2静态分析

Maven常用插件

mvn -T 4 spotbugs:check pmd:check checkstyle:check

Gradle如果已配置

./gradlew checkstyleMain pmdMain spotbugsMain

阶段 3测试 + 覆盖率

mvn -T 4 test
mvn jacoco:report   # verify 80%+ coverage
# or
./gradlew test jacocoTestReport

报告:

  • 总测试数,通过/失败
  • 覆盖率百分比(行/分支)

阶段 4安全扫描

# Dependency CVEs
mvn org.owasp:dependency-check-maven:check
# or
./gradlew dependencyCheckAnalyze

# Secrets (git)
git secrets --scan  # if configured

阶段 5代码检查/格式化(可选关卡)

mvn spotless:apply   # if using Spotless plugin
./gradlew spotlessApply

阶段 6差异审查

git diff --stat
git diff

检查清单:

  • 没有遗留调试日志(System.outlog.debug 没有防护)
  • 有意义的错误信息和 HTTP 状态码
  • 在需要的地方有事务和验证
  • 配置变更已记录

输出模板

VERIFICATION REPORT
===================
Build:     [PASS/FAIL]
Static:    [PASS/FAIL] (spotbugs/pmd/checkstyle)
Tests:     [PASS/FAIL] (X/Y passed, Z% coverage)
Security:  [PASS/FAIL] (CVE findings: N)
Diff:      [X files changed]

Overall:   [READY / NOT READY]

Issues to Fix:
1. ...
2. ...

持续模式

  • 在重大变更时或长时间会话中每 3060 分钟重新运行各阶段
  • 保持短循环:mvn -T 4 test + spotbugs 以获取快速反馈

记住:快速反馈胜过意外惊喜。保持关卡严格——将警告视为生产系统中的缺陷。

Reference in New Issue View Git Blame Copy Permalink