Initial commit

Author: alies-dev

.gitattributes

@@ -0,0 +1,3 @@
+/.github export-ignore
+/tests export-ignore
+/phpunit.xml.dist export-ignore

.gitignore

@@ -0,0 +1,7 @@
+# composer
+composer.lock
+/vendor
+
+# phpunit
+/.phpunit.cache
+/.phpunit.result.cache

IxDFCodingStandard/Sniffs/Classes/ForbidDirectClassInheritanceSniff.php

@@ -0,0 +1,47 @@
+<?php declare(strict_types=1);
+
+namespace IxDFCodingStandard\Sniffs\Classes;
+
+use PHP_CodeSniffer\Files\File;
+use PHP_CodeSniffer\Sniffs\Sniff;
+
+final class ForbidDirectClassInheritanceSniff implements Sniff
+{
+    public const FORBIDDEN_CLASS_INHERITED = 'ForbiddenInheritance';
+
+    /**
+     * A list of forbidden classes not allowed to inherit directly.
+     * Usually used to force developers to use our custom wrappers instead of framework or library functionality.
+     * @var array<class-string, class-string|null>
+     */
+    public $forbiddenClasses = [];
+
+    /** @return list<int> */
+    public function register(): array
+    {
+        return [
+            \T_CLASS,
+        ];
+    }
+
+    /**
+     * @phpcsSuppress SlevomatCodingStandard.TypeHints.ParameterTypeHint.MissingNativeTypeHint
+     * @param int $classPointer
+     */
+    public function process(File $phpcsFile, $classPointer): void
+    {
+        $parentFQCN = $phpcsFile->findExtendedClassName($classPointer);
+
+        if ($parentFQCN === false || ! array_key_exists($parentFQCN, $this->forbiddenClasses)) {
+            return;
+        }
+
+        $replaceBy = $this->forbiddenClasses[$parentFQCN];
+        $error = sprintf(
+            'Class “%s” is forbidden for direct inheritance, “%s” should be used instead.',
+            $parentFQCN,
+            $replaceBy
+        );
+        $phpcsFile->addError($error, $classPointer, self::FORBIDDEN_CLASS_INHERITED);
+    }
+}

IxDFCodingStandard/Sniffs/Classes/ForbidMethodDeclarationSniff.php

@@ -0,0 +1,49 @@
+<?php declare(strict_types=1);
+
+namespace IxDFCodingStandard\Sniffs\Classes;
+
+use PHP_CodeSniffer\Files\File;
+use PHP_CodeSniffer\Sniffs\Sniff;
+use SlevomatCodingStandard\Helpers\ClassHelper;
+
+final class ForbidMethodDeclarationSniff implements Sniff
+{
+    public const FORBIDDEN_METHOD_DECLARATION = 'ForbiddenMethodDeclaration';
+
+    /**
+     * A list of methods which should not be declared
+     * in specific.
+     * @var array<string, string>
+     */
+    public $forbiddenMethods = [];
+
+    /** @return list<int> */
+    public function register(): array
+    {
+        return [
+            \T_CLASS,
+        ];
+    }
+
+    /**
+     * @phpcsSuppress SlevomatCodingStandard.TypeHints.ParameterTypeHint.MissingNativeTypeHint
+     * @param int $classPointer
+     */
+    public function process(File $phpcsFile, $classPointer): void
+    {
+        /** @var class-string $fqcn */
+        $fqcn = ClassHelper::getFullyQualifiedName($phpcsFile, $classPointer);
+        foreach ($this->forbiddenMethods as $typeAndMethod => $replacement) {
+            [$type, $method] = explode('::', $typeAndMethod);
+            if (! is_subclass_of($fqcn, $type)) {
+                continue;
+            }
+
+            if (! method_exists($fqcn, $method)) {
+                continue;
+            }
+
+            $phpcsFile->addError(sprintf('Method “%s” is forbidden, use “%s” instead.', $typeAndMethod, $replacement), $classPointer, self::FORBIDDEN_METHOD_DECLARATION);
+        }
+    }
+}

IxDFCodingStandard/Sniffs/Files/BemCasedFilenameSniff.php

@@ -0,0 +1,99 @@
+<?php declare(strict_types=1);
+
+namespace IxDFCodingStandard\Sniffs\Files;
+
+use PHP_CodeSniffer\Files\File;
+use PHP_CodeSniffer\Sniffs\Sniff;
+
+/** Checks that all file names are BEM-cased. */
+final class BemCasedFilenameSniff implements Sniff
+{
+    private const MODIFIER_DELIMITER = '--';
+    private const ELEMENT_DELIMITER = '__';
+    private const BEM_FILE_NAME_PATTERN = '/^(?:(?:(?:__)?[a-z][a-zA-Z0-9]*)(?:(?:--)[\w][a-zA-Z0-9]*)?)+?\.blade\.php$/';
+    private const BLADE_COMPONENT_FILE_NAME_PATTERN = '/^([a-z]+(\-[a-z]+)+)\.blade\.php$/';
+
+    /** @var array<string, bool> */
+    private array $checkedFiles = [];
+
+    /** @inheritDoc */
+    public function register(): array
+    {
+        return [\T_INLINE_HTML, \T_OPEN_TAG];
+    }
+
+    /** @inheritDoc */
+    public function process(File $phpcsFile, $stackPtr): int
+    {
+        $filename = $phpcsFile->getFilename();
+
+        $hash = md5($filename);
+        if (isset($this->checkedFiles[$hash]) || $filename === 'STDIN') {
+            return 0;
+        }
+
+        $this->checkedFiles[$hash] = true;
+
+        $filename = basename($filename);
+
+        if ($this->hasInvalidNumberOfElements($filename)) {
+            $phpcsFile->addError(
+                'Filename “%s” has too many element delimiters',
+                $stackPtr,
+                'TooManyElementDelimiters',
+                [$filename]
+            );
+            $phpcsFile->recordMetric($stackPtr, 'BEM element delimiters', 'no');
+        } else {
+            $phpcsFile->recordMetric($stackPtr, 'BEM element delimiters', 'yes');
+        }
+
+        if (substr_count($filename, self::MODIFIER_DELIMITER) > 1) {
+            $phpcsFile->addError(
+                'Filename “%s” has to many element modifiers',
+                $stackPtr,
+                'TooManyElementModifiers',
+                [$filename]
+            );
+            $phpcsFile->recordMetric($stackPtr, 'BEM element modifiers', 'no');
+        } else {
+            $phpcsFile->recordMetric($stackPtr, 'BEM element modifiers', 'yes');
+        }
+
+        if ($this->hasCorrectFileName($filename)) {
+            $phpcsFile->recordMetric($stackPtr, 'BEM case filename', 'yes');
+        } else {
+            $error = 'Filename “%s” does not match the expected BEM filename convention';
+            $phpcsFile->addError($error, $stackPtr, 'InvalidCharacters', [$filename]);
+            $phpcsFile->recordMetric($stackPtr, 'BEM case filename', 'no');
+        }
+
+        // Ignore the rest of the file.
+        return $phpcsFile->numTokens + 1;
+    }
+
+    private function hasInvalidNumberOfElements(string $filename): bool
+    {
+        return count(explode(self::ELEMENT_DELIMITER, ltrim($filename, self::ELEMENT_DELIMITER))) > 3;
+    }
+
+    private function hasCorrectFileName(string $filename): bool
+    {
+        return $this->isBemFilename($filename) || $this->isComponentFileName($filename) || $this->isErrorPage($filename);
+    }
+
+    private function isBemFilename(string $filename): bool
+    {
+        return preg_match(self::BEM_FILE_NAME_PATTERN, $filename) === 1;
+    }
+
+    private function isComponentFileName(string $filename): bool
+    {
+        return preg_match(self::BLADE_COMPONENT_FILE_NAME_PATTERN, $filename) === 1;
+    }
+
+    private function isErrorPage(string $filename): bool
+    {
+        return preg_match('/^([45])\d{2}\.blade\.php$/', $filename) === 1;
+    }
+}

IxDFCodingStandard/Sniffs/Functions/ForbiddenFunctionsSniff.php

@@ -0,0 +1,11 @@
+<?php declare(strict_types=1);
+
+namespace IxDFCodingStandard\Sniffs\Functions;
+
+use PHP_CodeSniffer\Standards\Generic\Sniffs\PHP\ForbiddenFunctionsSniff as BaseForbiddenFunctionsSniff;
+
+final class ForbiddenFunctionsSniff extends BaseForbiddenFunctionsSniff
+{
+    /** @inheritDoc */
+    public $forbiddenFunctions = [];
+}

IxDFCodingStandard/Sniffs/Laravel/DisallowGuardedAttributeSniff.php

@@ -0,0 +1,64 @@
+<?php declare(strict_types=1);
+
+namespace IxDFCodingStandard\Sniffs\Laravel;
+
+use PHP_CodeSniffer\Files\File;
+use PHP_CodeSniffer\Sniffs\AbstractScopeSniff;
+use SlevomatCodingStandard\Helpers\ClassHelper;
+
+final class DisallowGuardedAttributeSniff extends AbstractScopeSniff
+{
+    public const CODE_EMPTY_GUARDED = 'EmptyGuarded';
+    public const CODE_NON_EMPTY_GUARDED = 'NonEmptyGuarded';
+
+    /**
+     * A list of tokenizers this sniff supports.
+     * @var list<string>
+     */
+    public array $supportedTokenizers = ['PHP'];
+
+    /** Constructs the test with the tokens it wishes to listen for. */
+    public function __construct()
+    {
+        parent::__construct([\T_CLASS], [\T_VARIABLE], false);
+    }
+
+    /** @inheritDoc */
+    protected function processTokenWithinScope(File $phpcsFile, $varPointer, $currScope)
+    {
+        $varToken = $phpcsFile->getTokens()[$varPointer];
+
+        if ($varToken['content'] !== '$guarded') {
+            return;
+        }
+
+        $classTokenPointer = $phpcsFile->findPrevious([\T_CLASS], $varPointer);
+
+        $classFQCN = ClassHelper::getFullyQualifiedName($phpcsFile, $classTokenPointer);
+
+        $probablyModelInstance = new $classFQCN(); // @todo find a more performant option
+        if (! $probablyModelInstance instanceof \Illuminate\Database\Eloquent\Model) {
+            return;
+        }
+
+        $modelInstance = $probablyModelInstance;
+
+        if ($modelInstance->getGuarded() === []) {
+            $error = 'Usage of unguarded Model attributes is forbidden for security reasons.';
+            $phpcsFile->addError($error, $varPointer, self::CODE_EMPTY_GUARDED);
+            return;
+        }
+
+        if ($modelInstance->getGuarded() !== ['*']) {
+            $error = 'Usage of unguarded Model attributes is forbidden for security reasons.';
+            $phpcsFile->addError($error, $varPointer, self::CODE_NON_EMPTY_GUARDED);
+            return;
+        }
+    }
+
+    /** @inheritDoc */
+    protected function processTokenOutsideScope(File $phpcsFile, $stackPtr)
+    {
+        // nothing to do here
+    }
+}