Implement CHANGELOG check (#4018)

* Initial test using dangerfiles.

* Add ruby version

* Add setup script.

* Fix path to setup script.

* Right modes.

* Adjust token

* Add gemfile.

* Add yml for testing

* Use labels for no-changelog.

* Simplify dangerfile

* Cleanup files.

* Conditionally enable check during development

* Run in ubuntu instead of macos

* Don't run check on YAML file changes.

* Use changelog instead of danger as name of the check.

* Adjust naming

* Get rid of .ruby-version

* Put all danger related files inside ci/danger

* Fix typo

* Move working-directory to the right section

* Another fix try

* Only run the actual command inside the subir

* Use cd instead

* Fix path.

* Copy gemfiles to root

* Add Gemfile.lock to the repo

* Use env var to point to the right Gemfile

* Exclude more entries based on their directory and expand test team

* Refactor has_sdk_changes into a function.

* Increase depth to make Danger happy.

See https://gitlab.com/gitlab-org/gitlab/-/issues/289953 for a related issue.

* typo.

* fetch-dept should be in a With block

* Make exclude_directories global since that's what it is

* Use same checkout config as other GA

* Fetch depth 100

* Filter by directory only.

Extension based filtering is too verbose.

Author: rlazo

.github/workflows/changelog.yml

@@ -0,0 +1,29 @@
+name: Changelog
+
+on:
+  pull_request
+
+concurrency:
+    group: ${{ github.workflow }}-${{ github.head_ref || github.ref }}
+    cancel-in-progress: true
+
+jobs:
+  danger:
+    runs-on: ubuntu-22.04
+    env:
+      BUNDLE_GEMFILE: ./ci/danger/Gemfile
+    steps:
+    - uses: actions/checkout@v3
+      with:
+        fetch-depth: 100
+        submodules: true
+    - uses: ruby/setup-ruby@v1
+      with:
+        ruby-version: '2.7'
+    - name: Setup Bundler
+      run: ./ci/danger/setup_bundler.sh
+    - name: Danger CHANGELOG verifier
+      env:
+        DANGER_GITHUB_API_TOKEN: ${{ secrets.GOOGLE_OSS_BOT_TOKEN }}
+      run:
+        '[ ! -z $DANGER_GITHUB_API_TOKEN ] && bundle exec danger --dangerfile=./ci/danger/Dangerfile || echo "Skipping Danger for External Contributor"'

ci/danger/Dangerfile

@@ -0,0 +1,98 @@
+## Copyright 2022 Google LLC
+##
+## Licensed under the Apache License, Version 2.0 (the "License");
+## you may not use this file except in compliance with the License.
+## You may obtain a copy of the License at
+##
+##      http://www.apache.org/licenses/LICENSE-2.0
+##
+## Unless required by applicable law or agreed to in writing, software
+## distributed under the License is distributed on an "AS IS" BASIS,
+## WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+## See the License for the specific language governing permissions and
+## limitations under the License.
+
+### Helper functions
+
+# Determine if there are changes in files matching any of the
+# path patterns provided.
+def shouldFileBeExcluded(file, exclude_paths)
+  return exclude_paths.any? { |dir| file.include? dir }
+end
+
+# Determine if there are changes in files matching any of the
+# path patterns provided.
+def hasChangesIn(paths)
+  path_array = Array(paths)
+  path_array.each do |dir|
+    if !git.modified_files.grep(/#{dir}/).empty?
+      return true
+    end
+  end
+  return false
+end
+
+### Definitions
+
+# Label for any change that shouldn't have an accompanying CHANGELOG entry,
+# including all changes that do not affect the compiled binary (i.e. script
+# changes, test-only changes)
+declared_trivial = github.pr_labels.include? "no-changelog"
+
+# Whether or not there are pending changes to any changelog file.
+has_changelog_changes = hasChangesIn(["CHANGELOG"])
+
+# Ignore changes in these directories
+$exclude_directories = [
+  '.github/',
+  'buildSrc/',
+  'ci/',
+  'encoders/',
+  'firebase-annotations/',
+  'firebase-components/',
+  'firebase-datatransport/',
+  'gradle/',
+  'health-metrics/',
+  'integ-testing/',
+  'protolite-well-known-types/',
+  'smoke-tests/',
+  'third_party/',
+  'tools/',
+  'transport/'
+]
+
+# Whether or not the PR has modified SDK source files.
+def has_sdk_changes()
+  files = (git.modified_files +
+           git.added_files +
+           git.deleted_files)
+  return files.any? { |file|
+    !shouldFileBeExcluded(file, $exclude_directories)
+  }
+end
+
+tester_team = [
+  'rlazo',
+  'vkryachko',
+  'yifanyang',
+  'VinayGuthal',
+  'davidmotson',
+  'daymxn',
+  'emilypgoogle'
+]
+
+is_enabled = true if tester_team.include? github.pr_author
+
+### Actions
+
+# Warn if a changelog is left out on a non-trivial PR that has modified
+# SDK source files.
+#
+# TODO: remove the `is_enabled` after tests are complete
+if is_enabled && has_sdk_changes()
+  if !has_changelog_changes && !declared_trivial
+    warning = "Did you forget to add a changelog entry? (Add the 'no-changelog'"\
+      " label to the PR to silence this warning.)"
+    warn(warning)
+  end
+end

ci/danger/Gemfile

@@ -0,0 +1,5 @@
+# To update, change version below, run bundle install, test,
+# commit Gemfile and Gemfile.lock.
+source 'https://rubygems.org'
+
+gem 'danger', '8.4.5'

ci/danger/Gemfile.lock

@@ -0,0 +1,84 @@
+GEM
+  remote: https://rubygems.org/
+  specs:
+    addressable (2.8.1)
+      public_suffix (>= 2.0.2, < 6.0)
+    claide (1.1.0)
+    claide-plugins (0.9.2)
+      cork
+      nap
+      open4 (~> 1.3)
+    colored2 (3.1.2)
+    cork (0.3.0)
+      colored2 (~> 3.1)
+    danger (8.4.5)
+      claide (~> 1.0)
+      claide-plugins (>= 0.9.2)
+      colored2 (~> 3.1)
+      cork (~> 0.1)
+      faraday (>= 0.9.0, < 2.0)
+      faraday-http-cache (~> 2.0)
+      git (~> 1.7)
+      kramdown (~> 2.3)
+      kramdown-parser-gfm (~> 1.0)
+      no_proxy_fix
+      octokit (~> 4.7)
+      terminal-table (>= 1, < 4)
+    faraday (1.10.1)
+      faraday-em_http (~> 1.0)
+      faraday-em_synchrony (~> 1.0)
+      faraday-excon (~> 1.1)
+      faraday-httpclient (~> 1.0)
+      faraday-multipart (~> 1.0)
+      faraday-net_http (~> 1.0)
+      faraday-net_http_persistent (~> 1.0)
+      faraday-patron (~> 1.0)
+      faraday-rack (~> 1.0)
+      faraday-retry (~> 1.0)
+      ruby2_keywords (>= 0.0.4)
+    faraday-em_http (1.0.0)
+    faraday-em_synchrony (1.0.0)
+    faraday-excon (1.1.0)
+    faraday-http-cache (2.4.1)
+      faraday (>= 0.8)
+    faraday-httpclient (1.0.1)
+    faraday-multipart (1.0.4)
+      multipart-post (~> 2)
+    faraday-net_http (1.0.1)
+    faraday-net_http_persistent (1.2.0)
+    faraday-patron (1.0.0)
+    faraday-rack (1.0.0)
+    faraday-retry (1.0.3)
+    git (1.12.0)
+      addressable (~> 2.8)
+      rchardet (~> 1.8)
+    kramdown (2.4.0)
+      rexml
+    kramdown-parser-gfm (1.1.0)
+      kramdown (~> 2.0)
+    multipart-post (2.2.3)
+    nap (1.1.0)
+    no_proxy_fix (0.1.2)
+    octokit (4.25.1)
+      faraday (>= 1, < 3)
+      sawyer (~> 0.9)
+    open4 (1.3.4)
+    public_suffix (5.0.0)
+    rchardet (1.8.0)
+    rexml (3.2.5)
+    ruby2_keywords (0.0.5)
+    sawyer (0.9.2)
+      addressable (>= 2.3.5)
+      faraday (>= 0.17.3, < 3)
+    terminal-table (3.0.2)
+      unicode-display_width (>= 1.1.1, < 3)
+    unicode-display_width (2.2.0)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  danger (= 8.4.5)
+
+BUNDLED WITH
+   1.17.2

ci/danger/setup_bundler.sh

@@ -0,0 +1,19 @@
+#!/bin/bash
+
+# Copyright 2022 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+bundle install
+bundle update --bundler # ensure bundler version is high enough for Gemfile.lock
+bundle --version