All
Accepted answers
Daniel Tamajon · Jul 14, 2025 go to post

Hi everyone,

I'd like to propose a short remote meeting to briefly explain the logic behind the current ObjectScript quality system. The goal is to ensure we all share the same foundation to continue this open discussion on what we consider "good" or "bad" code.

From there, we can collectively evaluate, refine, or propose new rules based on real needs and shared insights.

It's important to note that the current set of rules was developed thoughtfully, with input from experienced developers and in alignment with customer expectations.

Please let me know your availability (via private message) so we can schedule the meeting accordingly.

Looking forward to your feedback and participation.

Daniel Tamajon · Feb 4, 2025 go to post

Hi Giacomo,

We are currently supporting IRIS server-side analysis if you are already interested on it!

Kind Regards,
Daniel

Daniel Tamajon · Jan 10, 2023 go to post

Hi Giacomo,

There is not currently support for IRIS server-side analysis. It requires some integration with main InterSystems extension.

It is not currently in our scope as it is an old-fashion way of working with Object Script and there is no requirements from any of our customers for such support.

If you require such feature, let's meet to talk about.

Daniel Tamajon · Feb 12, 2021 go to post

Robert, the trigger is run after each commit.

Please, notice there is a misspelling and path must be ".github/workflows"

Daniel Tamajon · Dec 9, 2020 go to post

Hi,

We have been collecting the Coding Standards and Best Practices to build a static code analyzer (as @Evgeny Shvarov mentioned). In following link you will find all the rules we have developed, including wrong and rigth coding examples and how to solve them:

https://objectscriptquality.com/docs/objectscriptquality-release/rules
 

The code review can be done with our ObjectScriptQuality tool, which can be integrated with your preferred development tool, so developers have the code review at time.

You can test the tool uploading an ObjectScript project to github, or you can install the server to test it for 2 weeks. Also, you can install the development environment plugin and analyze code in standalone mode, which is free of charge.

Daniel Tamajon · Sep 2, 2020 go to post

Hi Alexey,

Of course following known-patterns it works properly. But, in my opinion, you are delegating too many responsabilities to the developer, while with TRY/CATCH/THROW you just delegate what to do when an error happens. You can forget about how is internally working or wondering if a call to a library is generating a collateral error. As Caché is OOP (aside backwards compatibility), we should also use the more modern error handling supported by the language.

Nowadays systems are getting more and more complex and we need to abstract and reduce logic when possible, and get things as simple an readable as possible.

Daniel Tamajon · Feb 6, 2020 go to post

Hi Joaquin,

As Evgeny told, we solve lint check using CacheQuality, which is a objectscript plugin for SonarQube. We also integrate it on Caché Studio, Atelier and VSCode, so you can have a first check on your development tool.

We also integrate the Test Coverage Tool, so you will have the full project view from one point!

Please, check https://www.cachequality.com/ to have a more complete view, or contact me for a demo. I will be pleased to show you how it works!

Daniel Tamajon · Apr 1, 2019 go to post

It would be really useful if you can attach some examples about your "query" construction, so we can identify the different situations to be able to build proper rules.

Daniel Tamajon · Mar 27, 2019 go to post

So here we need a "Reserved word used as SQL property" rule, and this is a issue for readability and a best practice. Isn't it?

Daniel Tamajon · Mar 27, 2019 go to post

I think you propose a "Possible SQL injection" rule, to detect when sql is created from strings concatenation without proper parametrization.

Daniel Tamajon · Mar 11, 2019 go to post

Hi Evgeny!

I think it's a nice idea to have a default profile based on Community voted rules, which will allow proper usage of Studio/Atelier/VSCode plugins without a SonarQube server.

Also, we encourage anyone to propose new helpful rules or (as we are doing here) to discuss about existing ones to get a revised version of them based on Community consensus.

Daniel Tamajon · Mar 11, 2019 go to post

You are right Robert, I should say "nothing apparently" as there is always an implicit execution to set $TEST on legacy IF (but not in new IF version).

Agree with "learning the language is and advantage", and tools should help to make an easier learning curve.

Daniel Tamajon · Mar 11, 2019 go to post

Accordingly to the different rules applied, it should be rewritten like this:

if $$$ISERR(sc) { return sc }

You can check it on the rule help provided in the same environment or here.

Daniel Tamajon · Mar 11, 2019 go to post

For now, sonarlint for VS Code does not allow to disable rules. Currently, this feature is only available on Atelier.

All the referred parameters are configurable from SonarQube, where you can define multiple Quality Profiles (it is, different sets of rules). So when you get your sonarlint connected to Sonarqube you will use the Profile definition for the particular project.

Otherwise, you are using the default settings which can be modified on a different way if many of you require it to us, but it will never fit to all projects as each one has its own particularities.

You can rise it on https://tracker.cachequality.com

Daniel Tamajon · Mar 11, 2019 go to post

I agree with "they should learn it to understand it before touching it", but we are not talking to go from Latin to Cyrillic... many people is working in Java, C#, Javascript, ... which, let's say, all of them are not just Latin but also Romanic... so after you learn a second language the third one is really easy because you know how grammatical structure works and you only need learn about semantics.

So, in our consideration and accordingly also with community users and customers that helped us to consider each rule, if the language allows a way to be more "Romanic", it's a bad practice not to use that way.

This consideration is not absolute in any way, just a recomendation.

Just to say that not all the rules are valid for all the projects/context/environments, as the development guide can differs from one company to another (even from one project to another in the same company). So the most important is to find the useful rules for each context and configure the proper profile to allow certificate the code with your own quality requirements.

Daniel Tamajon · Mar 11, 2019 go to post

First of all, you can only enable or disable rules from SonarQube, so you need your sonarlint connected to a SonarQube server to user your own set of rules. SonarLint is not ready to do that on VS Code while in Atelier can be done.

In that case, readability refers to usage of "{" and "}", as you enclose the execution of the "if" evaluation and helps to understand which instructions will be executed on true evaluation.

I will expose our considerations next, and we are opened to change it if community holds on a different suggestion, or better we can create an alternative rule to accomplish a different requirement.

You can either have many statements on one line, all of the will be executed on true evaluation, really hard to read if you have many statements:

if condition do ..firstThing() do ..secondThing()

Or you could try to write:

if condition
    do ..something()

In that case, the true evaluation will execute nothing, and the next sentence will be always executed.

Nowadays we write in many languages and we need to have a deep knowledge to do good stuff, but also we use many times the same structures, as they are more easy on remember, so we can have "silly" errors because some languages have a more strict structure than others.

And if you want to allow developers using other languages to write proper ObjectScript, as more similar is semantics to other languages, more easy will be to them to adopt to ObjectScript.

Daniel Tamajon · Sep 3, 2018 go to post

Hi Evgeny,

When we refer to Code Coverage we mean "how many source code has been tested". We measure Code Coverage on the Unit Test execution.

As ObjectScript does not have an official Unit Test Framework, we will provide such Framework. Or if a customer has a custom Unit Test Framework, we will help to include some modifications to allow Code Coverage to be measured.

Daniel Tamajon · Sep 2, 2018 go to post

Ben, I'm so sorry for the inconvenience. It was the Botcha protection detecting you as a robot. It is now solved!

Daniel Tamajon · Aug 1, 2018 go to post

Hi Henry,

You are welcome to install a evaluation copy of the analyzer (with full functional features) from here. Just follow the installation instructions, and let us know how was your experience.

If you have any doubt, our team will answer any question!!

Daniel Tamajon · Sep 21, 2017 go to post

Hi Mario!

As metioned above, please visit the official CachéQuality website and the online Demo. From the official website you can require a demo license, so you will have a full version of CachéQuality to analyze all your code and check the tool features.

From the analysis, we do checks on code based on rules to find bugs, vulnerabilities and other code issues, but also we do a lot of measures of your project, like Technical Debt, Cyclomatic Complexity, CBO, DIT, WIT, LCOM4, RFC, Halstead, ...

Those metrics will help you to take decisions about which parts of code you should start refactoring.

If you need any more info or a walkthrough, please contact me.