Skip to content

chore: add DeepSource configuration#7

Open
2233admin wants to merge 1 commit into
masterfrom
chore/deepsource-config-20260623183602
Open

chore: add DeepSource configuration#7
2233admin wants to merge 1 commit into
masterfrom
chore/deepsource-config-20260623183602

Conversation

@2233admin

Copy link
Copy Markdown
Owner

Summary

  • Add repository-local DeepSource configuration.
  • Enabled analyzers: python, javascript.
  • Exclude generated, dependency, and build output paths to keep first-run findings actionable.

Validation

  • Parsed .deepsource.toml with Python tomllib.
  • Existing CI/CodeQL/Dependabot configuration is unchanged.

Follow-up

  • Enable 2233admin/glyph-arts in the DeepSource Dashboard after this PR merges.
  • Review first analysis and tune exclude_patterns if generated files dominate findings.

@coderabbitai

coderabbitai Bot commented Jun 23, 2026

Copy link
Copy Markdown

Warning

Review limit reached

@2233admin, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 43 minutes and 19 seconds. Learn how PR review limits work.

Your organization has run out of usage credits. Purchase more credits in the billing tab to continue.

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

To avoid repeated limits, reduce automatic review volume by pausing incremental auto-reviews earlier, using label-based review opt-in, excluding WIP or generated PR titles, or requesting reviews manually when the PR is ready. If your team needs uninterrupted high-volume reviews, an organization admin can enable usage-based credits.

🚦 How do rate limits work?

CodeRabbit enforces per-developer PR review limits for each organization. Most developers receive the normal plan refill rate.

For paid Pro and Pro+ PR reviews, CodeRabbit uses rolling per-developer review limits. Reviews become available again as older review attempts age out of the rolling limit window.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 6f7c5ab1-0efb-47d6-881d-0d07eb1b8385

📥 Commits

Reviewing files that changed from the base of the PR and between d50d4d1 and fad5939.

📒 Files selected for processing (1)
  • .deepsource.toml

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands.

@gemini-code-assist gemini-code-assist Bot left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request introduces a .deepsource.toml configuration file to enable DeepSource analysis for Python and JavaScript. The review feedback suggests correcting the Python runtime_version to a supported specific version format, expanding the exclude_patterns to align with existing Ruff exclusions, and removing the redundant and incorrect dependency_file_paths directory path from the JavaScript analyzer configuration.

Important

The consumer version of Gemini Code Assist on GitHub is being sunset. Starting June 18, 2026, new organization installations will be blocked, and all code review activity will officially cease on July 17, 2026.
For more details on the timeline and next steps, please review the Help Documentation.

Comment thread .deepsource.toml
enabled = true

[analyzers.meta]
runtime_version = "3.x.x"

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

high

DeepSource's Python analyzer does not support wildcard/semver patterns like "3.x.x" for runtime_version. It expects a specific major.minor version string (e.g., "3.10", "3.11", "3.12"). Since the project's pyproject.toml specifies requires-python = ">=3.10" and mypy is configured for "3.10", setting this to "3.10" prevents configuration parsing and analysis errors.

Suggested change
runtime_version = "3.x.x"
runtime_version = "3.10"

Comment thread .deepsource.toml
Comment on lines +10 to +20
exclude_patterns = [
"node_modules/**",
"dist/**",
"target/**",
"vendor/**",
"build/**",
"coverage/**",
"bundle.js",
"**/bundle.js",
"**/generated/**",
]

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

medium

To keep DeepSource findings actionable and consistent with the existing Ruff configuration (tool.ruff.extend-exclude in pyproject.toml), consider excluding temporary test directories, demos, and scratch paths.

Suggested change
exclude_patterns = [
"node_modules/**",
"dist/**",
"target/**",
"vendor/**",
"build/**",
"coverage/**",
"bundle.js",
"**/bundle.js",
"**/generated/**",
]
exclude_patterns = [
"node_modules/**",
"dist/**",
"target/**",
"vendor/**",
"build/**",
"coverage/**",
"bundle.js",
"**/bundle.js",
"**/generated/**",
"demo/**",
"scripts/**",
"**/*_tmp/**",
"**/_temp/**",
"**/export_test_outputs/**",
"**/.tmp/**",
]

Comment thread .deepsource.toml
Comment on lines +31 to +34
[[analyzers]]
name = "javascript"
enabled = true
dependency_file_paths = ["."]

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

medium

The dependency_file_paths property expects paths to actual dependency files (e.g., ["package.json"]), not directories like ["."]. Since package.json is located in the root of the repository, DeepSource's JavaScript analyzer automatically detects and parses it, making this property redundant.

Suggested change
[[analyzers]]
name = "javascript"
enabled = true
dependency_file_paths = ["."]
[[analyzers]]
name = "javascript"
enabled = true

@codecov

codecov Bot commented Jun 23, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant