What's your typical process for reviewing a pull request in GitHub?

When I did code reviews, and for any team I lead from a technical aspect for, my a review has three phases of confirmation:

• Automatic

  • Did the testing pass? If not, stop.
  • Did the change add/remove tests? Why?
  • Did the code quality decrease measurably?
  • Did the change introduce possible future technical debt? Is it acceptable?
  • Did any of the tooling indicate a decrease in maintainability or compliance?

• Operation

  • Does the change satisfy the statement of work submitted for the change?
  • Does the change logic look reasonable?
  • Can I follow the logic change in text, mentally, and not get lost.

• Experience

  • From the end/admin/manager/etc users perspective does the change function as expected?

Sure it seems like a lot, and yes it may slow down the merge process a bit. But in my experience taking a little longer to review code can help prevent issues from getting to production.

The holy grain though is a 100% automated process with confidence in the automation that when a change begins throwing errors the changes are rolled back, the errors logged, and the committing developer alerted. But that is a story for another time.

Generally I'm sanity checking. Does this look like code? Are there any obvious typos? Any residual debugging statements? Anything that feels like a mistake?

If I want to get more involved, I'll pull the branch and test it. But sometimes it's better to get the code merged and fix bugs later, in smaller PRs.

The longer a pull request is, the less likely the reviewer will catch anything of importance.

When I was teaching, students would submit their homework/labs as pull requests, which leads to reviewing a couple hundred a week. My quickest tip is the tiny command line instructions link on GitHub saves a ton of time.

I would copy and paste the Step 1 changes into the CLI and then test the code on my computer. Then, I would normally do inline comments using the plus button that pops up when you hover over a line of code in the files changed tab with things I would change or things that were awesome!

Flow for when I am familiar with the code

1. The Why - Understanding the the reason for the changes. Was this a bug? Was this a feature request?
   a. Bug - Does this change fix the bug? Does it introduce any other possible bugs?
   b. Feature Request - Look at the corresponding JIRA ticket to ensure that all parts of the feature request are complete.

2. Logic - Dig into the logic and ensure that it all works like it should. Unless the logic is extremely complex, I usually will not pull a branch down and test it myself. We have a pretty comprehensive test suite and if there are good tests written for the new code its usually unnecessary to test manually unless its a big feature which will go through Q/A.

3. Performance - Are there any unnecessary MySQL queries? Are indexes in place where they should be? How will this code perform when executed a million times? How will this code affect our databases?

4. Edge Cases - Since becoming a Site Reliability Engineer, I feel like a lot of my work deals with edge cases. Code works 99% of the time, but if given this scenario, it breaks. I like to take a step back and look at the big picture for PR. How will this interact with other moving pieces of the code?

5. Code style and cleanliness - Are there bits that could be refactored to be more readable or more reusable? Are any variables not quite clear based on their naming?

When the PR deals with code I am unfamiliar with

1. ASK QUESTIONS! - I cannot tell you how valuable it can be when someone asks you questions about a PR. For a while, at my job I was the resident export at Elasticsearch. Because of that people, who shy away from reviewing my PRs bc they went beyond their own Elasticsearch knowledge. Since I wanted my code reviewed I started to tell people to just ask me questions. Have me explain the parts you dont get. By explaining how things worked, half of the time I would find the bugs myself. Plus, if you ask questions then you become more familiar with the code yourself.

For long pull requests, I use a practice that I call "micro/macro reviewing"

Stage 1: Micro reviewing

• Find code that doesn't follow best practice (which formatters and linters don't catch). Make direct suggestions using Github web tool
• Find good code sections / good tests then publicly thank / praise the author

Stage 2: Macro reviewing

• Understand what the issue is about
• Read every changed files, ask myself if the change solves the issue or not, how it solves the issue. Write down any questions that I have. For files that I have no questions and be independent from other files, I fold it.
• Re-read every unfolded files to find answers for the noted questions. Make a comment for anything that I can't find an answer or things that don't seem right.
• Beg for tests for non trivial changes.
• Find more good code sections / good tests then publicly thank / praise the author

I hardly run the code myself. Mostly because I'm lazy, but I trust code authors and our test suite.

My day to day job requires PR to be reviewed by my teammates and typically what the procedure is like is

• Look through the PR file changes and go ahead and pull the branch to test the feature is working correctly.

• Also make use of GitHub's tool for suggesting changes and adding comments to individual lines of code

0 Should pass in the test (all) to open a pull request
1 Pull the code. For me is not easy to understand the changes on a pull request
2 I can reviewing in different ways it depends if is a senior or a junior developer if is a junior the reviewing process is in pair.
3 Look through duplication code, performance and the most important details
4 Reviewing process is not a feature/bug test remind the developer of this

We use specific PR template which includes points about how was the code tested, new learnings, etc

Sample here github.com/Kommunicate-io/Kommunic...

I am not going to repeat what others have already said, but I will just add that it is sometimes important to ask the author to explain what he wanted to do and why. Just because the code says it does something and it is properly executed, it does not mean it was what suppose to be done. Make sure they actually understand what the task they are trying to do is about.

Adding to the awesome list -

1. I would expand the file a bit to understand the context better.
2. would add labels whether my comment is a minor/major - that is blocking or non-blocking
3. use Squash & merge :)

Are you asking what we should be looking for while code reviewing or how to use the tool to efficiently review the code? I think are lots of examples on dev.to on code review checklists.

1. Looking into JIRA ticket what actually required to be done;
2. Understanding the idea of proposed changes;
3. Paying attention to the details.