Added custom variable names validation (phpcs)

Embeded sniffs allow private variables to start with an underscore
and validate class/object referenced variables which might come
from 3rd party code. Those in our codebase will fail at definition.

Author: shudd3r

src/Sniffer/Sniffs/NamingConventions/ValidVariableNameSniff.php

@@ -0,0 +1,90 @@
+<?php declare(strict_types=1);
+
+/*
+ * This file is part of Polymorphine/Dev package.
+ *
+ * (c) Shudd3r <q3.shudder@gmail.com>
+ *
+ * This source file is subject to the MIT license that is bundled
+ * with this source code in the file LICENSE.
+ */
+
+namespace Polymorphine\Dev\Sniffer\Sniffs\NamingConventions;
+
+use PHP_CodeSniffer\Sniffs\AbstractVariableSniff;
+use PHP_CodeSniffer\Util\Common;
+use PHP_CodeSniffer\Files\File;
+
+
+class ValidVariableNameSniff extends AbstractVariableSniff
+{
+    private File  $phpcsFile;
+    private int   $varPointer;
+    private array $tokens;
+
+    protected function processVariable(File $phpcsFile, $stackPtr)
+    {
+        $varName = $this->contents($phpcsFile, $stackPtr);
+        if (isset($this->phpReservedVars[$varName])) { return; }
+
+        $prev = $this->phpcsFile->findPrevious([T_WHITESPACE], $stackPtr - 1, null, true);
+        if ($this->tokens[$prev]['code'] === T_PAAMAYIM_NEKUDOTAYIM) {
+            return;
+        }
+
+        $this->validateCamelCaps($varName, 'NotCamelCaps');
+        $this->validateNumbersInName($varName, 'ContainsNumbers');
+    }
+
+    protected function processMemberVar(File $phpcsFile, $stackPtr)
+    {
+        $varName = $this->contents($phpcsFile, $stackPtr);
+        $this->validateCamelCaps($varName, 'ClassVarNotCamelCaps');
+        $this->validateNumbersInName($varName, 'ClassVarContainsNumbers');
+    }
+
+    protected function processVariableInString(File $phpcsFile, $stackPtr)
+    {
+        $varPattern = '#[^\\\]\${?([a-zA-Z_\x7f-\xff][a-zA-Z0-9_\x7f-\xff]*)#';
+        $contents   = $this->contents($phpcsFile, $stackPtr, false);
+        if (!preg_match_all($varPattern, $contents, $matches)) { return; }
+
+        foreach ($matches[1] as $varName) {
+            if (isset($this->phpReservedVars[$varName])) { continue; }
+            $this->validateCamelCaps($varName, 'StringVarNotCamelCaps');
+            $this->validateNumbersInName($varName, 'StringVarContainsNumbers');
+        }
+    }
+
+    private function contents(File $phpcsFile, int $varPointer, bool $isVar = true): string
+    {
+        $this->varPointer = $varPointer;
+        if (!isset($this->file) || $this->file !== $phpcsFile) {
+            $this->phpcsFile = $phpcsFile;
+            $this->tokens    = $phpcsFile->getTokens();
+        }
+        $contents = $this->tokens[$this->varPointer]['content'];
+        return $isVar ? ltrim($contents, '$') : $contents;
+    }
+
+    private function validateCamelCaps(string $varName, string $type): void
+    {
+        if (Common::isCamelCaps($varName, false, true, false)) { return; }
+
+        $message = 'Variable `%s` is not in valid camel caps format';
+        $this->phpcsFile->addError($message, $this->varPointer, $type, [$varName]);
+    }
+
+    private function validateNumbersInName($varName, string $type): void
+    {
+        if (preg_match('#[0-9]#', $varName) !== 1) { return; }
+        if ($type === 'ClassVarContainsNumbers') {
+            $message = 'Variable `%s` cannot contain numbers';
+            $this->phpcsFile->addError($message, $this->varPointer, $type, [$varName]);
+            return;
+        }
+
+        $message = 'Variable `%s` should not contain numbers';
+        $this->phpcsFile->addWarning($message, $this->varPointer, $type, [$varName]);
+    }
+}

src/Sniffer/ruleset.xml

@@ -30,7 +30,4 @@
     <rule ref="PSR1.Methods.CamelCapsMethodName">
         <exclude-pattern>*/tests/*</exclude-pattern>
     </rule>
-    <rule ref="Squiz.NamingConventions.ValidVariableName">
-        <exclude name="Squiz.NamingConventions.ValidVariableName.PrivateNoUnderscore"/>
-    </rule>
 </ruleset>

tests/Fixtures/code-samples/Sniffs/InvalidVariableNames.php

@@ -0,0 +1,90 @@
+<?php
+
+// reserved names
+echo $_SERVER['var_name'];
+echo $_REQUEST['var_name'];
+echo $_GET['var_name'];
+echo $_POST['var_name'];
+echo $GLOBALS['var_name'];
+
+// local variables
+$camelCaps = new SomeClass();
+$technicallycorrect = true;
+$not_camel = new SomeClass();
+$Capital = 'city';
+$_likePrivate = false;
+$hasNumber1 = false;
+$has2number = 'false';
+
+// class members
+class SomeClass
+{
+    public static $staticVar;
+    protected static array $technicallycorrect;
+    public static $not_camel = 100;
+    private static $_oldSchoolPrivate;
+    public static $with100numerInside = 100;
+    public static $endsWithNumber6 = 6;
+
+    public Closure $camelCaps;
+    private array $_privateLike = [];
+    public int $shudd3r = 3;
+    public array $endsWithNumber1 = [];
+
+    public function doSomething($not_camel = false, $has2Number = false): void
+    {
+        $cameCase = $not_camel && $has2Number;
+
+        // not validated object reference
+        $this->_privateLike = [$cameCase];
+    }
+}
+
+$not_camel->doSomething();
+$cameCase->doSomething($bad_arg_name);
+
+// object/class referenced var names are not validated
+// 1. Might be 3rd party code
+// 2. Ours will fail at definition anyway
+$camelCaps->endsWithNumber1 = [];
+SomeClass::$not_camel = 220;
+
+// in strings
+$str = "Hello $name_or_world!";
+echo 'This is first line
+line with $_likePrivate variable, but in single quote
+which is ' . $concatenated2;
+
+echo "And here double ${quote}
+with $Capital variable
+in second line ${wrong_name}
+this is $variable_name}";
+
+$nowDoc = <<<'EOF'
+Variables in $NOWDOC are not validated
+EOF;
+
+$hereDoc = <<<EOF
+    But they are validated in HEREDOC - $has2Number
+    This line {$should_have} error
+    this is $\{not variable name.
+    EOF;
+
+$error = "format is \$GLOBALS['$varName']";
+
+echo $_SESSION['var_name'];
+echo $_FILES['var_name'];
+echo $_ENV['var_name'];
+echo $_COOKIE['var_name'];
+
+$XML       = 'hello';
+$myXML     = 'hello';
+$XMLParser = 'hello';
+$xmlParser = 'hello';
+
+echo "{$_SERVER['HOSTNAME']} $var_name";
+echo "{$_SERVER['HOSTNAME']} $varName";
+
+var_dump($http_response_header);
+var_dump($HTTP_RAW_POST_DATA);
+var_dump($php_errormsg);

tests/Sniffer/Sniffs/NamingConventions/ValidVariableNameSniffTest.php

@@ -0,0 +1,36 @@
+<?php declare(strict_types=1);
+
+/*
+ * This file is part of Polymorphine/Dev package.
+ *
+ * (c) Shudd3r <q3.shudder@gmail.com>
+ *
+ * This source file is subject to the MIT license that is bundled
+ * with this source code in the file LICENSE.
+ */
+
+namespace Polymorphine\Dev\Tests\Sniffer\Sniffs\NamingConventions;
+
+use Polymorphine\Dev\Tests\SnifferTest;
+use Polymorphine\Dev\Sniffer\Sniffs\NamingConventions\ValidVariableNameSniff;
+
+
+class ValidVariableNameSniffTest extends SnifferTest
+{
+    public function testNumberInLocalVariableName_GivesWarning()
+    {
+        $lines = [16, 17, 34, 36, 56, 68];
+        $this->assertWarningLines('./tests/Fixtures/code-samples/Sniffs/InvalidVariableNames.php', $lines);
+    }
+
+    public function testInvalidCamelCaseOrNumberInClassVariable_GivesError(): void
+    {
+        $lines = [13, 14, 15, 24, 25, 26, 27, 30, 31, 32, 34, 36, 43, 44, 53, 59, 60, 61, 69, 85];
+        $this->assertErrorLines('./tests/Fixtures/code-samples/Sniffs/InvalidVariableNames.php', $lines);
+    }
+
+    protected function sniffer(): string
+    {
+        return ValidVariableNameSniff::class;
+    }
+}

tests/SnifferTest.php

@@ -35,5 +35,11 @@ public function assertWarningLines(string $filename, array $expectedWarningLines
         $this->assertEquals($expectedWarningLines, array_keys($fileWarnings));
     }
 
+    public function assertErrorLines(string $filename, array $expectedErrorLines): void
+    {
+        $fileErrors = $this->runner->sniff($filename)->getErrors();
+        $this->assertEquals($expectedErrorLines, array_keys($fileErrors));
+    }
+
     abstract protected function sniffer(): string;
 }