Validate accidental override by presenters
This is part of a corrective action in the FCL issue.
What does this MR do and why?
The presenter classes are essentially for extending Active Record models (backend/core objects) for frontend components, such as Controller, Haml and GraphQL/Rest API. Presenters are never intended to override/tweak the behavior of the backend, however, currently the presenters can.
Because of this allowance, we recently had a production incident that CommitStatusPresenter#tag (which extended from ActionView::Helpers::UrlHelper) accidentally overrode the Ci::Build#tag, and persisted a wrong tag value to the ci_builds database table. Such problematic overriding should never be allowed.
This MR validates that the presenter classes (specifically all sub classes of Gitlab::View::Presenter::Delegated) not to accidentally introduce a conflict interface to Active Record models. This validation runs in our daily merge request pipelines (lint:static_verification jobs), so that we can catch a similar mistake proactively.
When a validation failed, the MR author must take an action with caution by following the documentation.
You can see all of the follow-up issues in this epic.
Example of accidental override detection
We've detected that the delegator is overriding a specific method(s) on the target class.
Please make sure if it's intentional and handle this error accordingly.
See https://gitlab.com/gitlab-org/gitlab/-/blob/master/app/presenters/README.md#validate-accidental-overrides for more information.
Here are the conflict details.
- Ci::PipelinePresenter#tag is overriding Ci::Pipeline#tag. delegator_location: /devkitkat/services/rails/cache/ruby/2.7.0/gems/actionview-6.1.3.2/lib/action_view/helpers/tag_helper.rb:271 target_location: /devkitkat/services/rails/cache/ruby/2.7.0/gems/activemodel-6.1.3.2/lib/active_model/attribute_methods.rb:254MR acceptance checklist
These checklists encourage us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.
Quality
- 
Confirmed 
- I have self-reviewed this MR per code review guidelines.
- For the code that that this change impacts, I believe that the automated tests (Testing Guide) validate functionality that is highly important to users (including consideration of all test levels). If the existing automated tests do not cover this functionality, I have added the necessary additional tests or I have added an issue to describe the automation testing gap and linked it to this MR.
- I have considered the technical aspects of the impact of this change on both gitlab.com hosted customers and self-hosted customers.
- I have considered the impact of this change on the front-end, back-end, and database portions of the system where appropriate and applied frontend, backend and database labels accordingly.
- I have tested this MR in all supported browsers, or determiend that this testing is not needed.
- I have confirmed that this change is backwards compatible across updates, or I have decided that this does not apply.
- I have properly separated EE content from FOSS, or this MR is FOSS only. (Where should EE code go?)
- If I am introducing a new expectation for existing data, I have confirmed that existing data meets this expectation or I have made this expectation optional rather than required.
Performance, reliability and availability
- 
Confirmed 
- I am confident that this MR does not harm performance, or I have asked a reviewer to help assess the performance impact. (Merge request performance guidelines)
- I have added information for database reviewers in the MR description, or I have decided that it is unnecessary. (Does this MR have database-related changes?)
- I have considered the availability and reliability risks of this change. I have also considered the scalability risk based on future predicted growth
- I have considered the performance, reliability and availability impacts of this change on large customers who may have significantly more data than the average customer.
Documentation
- 
Confirmed 
- I have included changelog trailers, or I have decided that they are not needed. (Does this MR need a changelog?)
- I have added/updated documentation, or I have decided that documentation changes are not needed for this MR. (Is documentation required?)
Security
- 
Confirmed 
- I have confirmed that if this MR contains changes to processing or storing of credentials or tokens, authorization, and authentication methods, or other items described in the security review guidelines, I have added the label security and I have @-mentioned@gitlab-com/gl-security/appsec.
Deployment
- 
Confirmed 
- I have considered using a feature flag for this change because the change may be high risk. If I decided to use a feature flag, I plan to test the change in staging before I test it in production, and I have considered rolling it out to a subset of production customers before doing rolling it out to all customers. When to use a feature flag
- I have informed the Infrastructure department of a default setting or new setting change per definition of done, or decided that this is not needed.