test(middleware/session): Remove extra release and aquire ctx calls in session_test.go #3043

sixcolors · 2024-06-26T12:54:46Z

Remove extra release and aquire ctx calls in session_test.go so Test_Session_Types passes in -race

…n session_test.go

coderabbitai · 2024-06-26T12:55:16Z

Warning

Review failed

Failed to post review comments.

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 7a2e99b and 57ac63e.

Files ignored due to path filters (2)

go.mod is excluded by !**/*.mod
go.sum is excluded by !**/*.sum, !**/*.sum

Files selected for processing (55)

.github/CONTRIBUTING.md (1 hunks)
.github/pull_request_template.md (2 hunks)
.github/release-drafter.yml (1 hunks)
.github/scripts/sync_docs.sh (1 hunks)
.github/workflows/benchmark.yml (2 hunks)
.github/workflows/codeql-analysis.yml (3 hunks)
.github/workflows/linter.yml (2 hunks)
.github/workflows/release-drafter.yml (1 hunks)
.github/workflows/sync-docs.yml (1 hunks)
.github/workflows/test.yml (2 hunks)
.github/workflows/vulncheck.yml (2 hunks)
app.go (1 hunks)
app_test.go (2 hunks)
ctx.go (2 hunks)
ctx_test.go (1 hunks)
docs/api/app.md (2 hunks)
docs/api/client.md (1 hunks)
docs/api/ctx.md (3 hunks)
docs/api/middleware/basicauth.md (1 hunks)
docs/api/middleware/cors.md (3 hunks)
docs/api/middleware/csrf.md (2 hunks)
docs/api/middleware/encryptcookie.md (4 hunks)
docs/api/middleware/healthcheck.md (1 hunks)
docs/api/middleware/keyauth.md (2 hunks)
docs/api/middleware/logger.md (1 hunks)
docs/api/middleware/requestid.md (1 hunks)
docs/guide/hooks.md (5 hunks)
docs/guide/routing.md (1 hunks)
middleware/adaptor/adaptor.go (2 hunks)
middleware/adaptor/adaptor_test.go (7 hunks)
middleware/basicauth/config.go (2 hunks)
middleware/cors/cors.go (4 hunks)
middleware/cors/cors_test.go (17 hunks)
middleware/cors/utils.go (1 hunks)
middleware/cors/utils_test.go (1 hunks)
middleware/csrf/config.go (3 hunks)
middleware/csrf/csrf.go (4 hunks)
middleware/csrf/csrf_test.go (6 hunks)
middleware/encryptcookie/config.go (1 hunks)
middleware/healthcheck/config.go (1 hunks)
middleware/healthcheck/healthcheck.go (1 hunks)
middleware/healthcheck/healthcheck_test.go (1 hunks)
middleware/idempotency/idempotency.go (1 hunks)
middleware/keyauth/config.go (2 hunks)
middleware/logger/config.go (2 hunks)
middleware/logger/logger.go (2 hunks)
middleware/logger/logger_test.go (1 hunks)
middleware/logger/tags.go (1 hunks)
middleware/monitor/monitor.go (3 hunks)
middleware/redirect/redirect.go (1 hunks)
middleware/redirect/redirect_test.go (2 hunks)
middleware/requestid/config.go (2 hunks)
middleware/requestid/requestid_test.go (1 hunks)
middleware/session/session_test.go (18 hunks)
middleware/session/store.go (4 hunks)

Files not processed due to max files limit (1)

middleware/session/store_test.go

Files not reviewed due to errors (1)

app_test.go (no review received)

Files skipped from review due to trivial changes (7)

.github/CONTRIBUTING.md
.github/pull_request_template.md
.github/release-drafter.yml
.github/workflows/release-drafter.yml
.github/workflows/sync-docs.yml
.github/workflows/vulncheck.yml
middleware/encryptcookie/config.go

Additional context used

Markdownlint

docs/api/middleware/requestid.md

59-59: Column: 1 (MD010, no-hard-tabs)
Hard tabs

60-60: Column: 1 (MD010, no-hard-tabs)
Hard tabs

50-50: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

docs/api/middleware/healthcheck.md

62-62: Column: 1 (MD010, no-hard-tabs)
Hard tabs

63-63: Column: 1 (MD010, no-hard-tabs)
Hard tabs

64-64: Column: 1 (MD010, no-hard-tabs)
Hard tabs

65-65: Column: 1 (MD010, no-hard-tabs)
Hard tabs

67-67: Column: 1 (MD010, no-hard-tabs)
Hard tabs

68-68: Column: 1 (MD010, no-hard-tabs)
Hard tabs

69-69: Column: 1 (MD010, no-hard-tabs)
Hard tabs

70-70: Column: 1 (MD010, no-hard-tabs)
Hard tabs

71-71: Column: 1 (MD010, no-hard-tabs)
Hard tabs

72-72: Column: 1 (MD010, no-hard-tabs)
Hard tabs

74-74: Column: 1 (MD010, no-hard-tabs)
Hard tabs

75-75: Column: 1 (MD010, no-hard-tabs)
Hard tabs

76-76: Column: 1 (MD010, no-hard-tabs)
Hard tabs

77-77: Column: 1 (MD010, no-hard-tabs)
Hard tabs

79-79: Column: 1 (MD010, no-hard-tabs)
Hard tabs

80-80: Column: 1 (MD010, no-hard-tabs)
Hard tabs

81-81: Column: 1 (MD010, no-hard-tabs)
Hard tabs

82-82: Column: 1 (MD010, no-hard-tabs)
Hard tabs

83-83: Column: 1 (MD010, no-hard-tabs)
Hard tabs

84-84: Column: 1 (MD010, no-hard-tabs)
Hard tabs

86-86: Column: 1 (MD010, no-hard-tabs)
Hard tabs

87-87: Column: 1 (MD010, no-hard-tabs)
Hard tabs

88-88: Column: 1 (MD010, no-hard-tabs)
Hard tabs

101-101: Column: 1 (MD010, no-hard-tabs)
Hard tabs

102-102: Column: 1 (MD010, no-hard-tabs)
Hard tabs

103-103: Column: 1 (MD010, no-hard-tabs)
Hard tabs

104-104: Column: 1 (MD010, no-hard-tabs)
Hard tabs

32-32: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

95-95: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

docs/api/middleware/encryptcookie.md

7-7: Expected: 0 or 2; Actual: 1 (MD009, no-trailing-spaces)
Trailing spaces

77-77: Column: 1 (MD010, no-hard-tabs)
Hard tabs

78-78: Column: 1 (MD010, no-hard-tabs)
Hard tabs

79-79: Column: 1 (MD010, no-hard-tabs)
Hard tabs

80-80: Column: 1 (MD010, no-hard-tabs)
Hard tabs

81-81: Column: 1 (MD010, no-hard-tabs)
Hard tabs

92-92: Column: 1 (MD010, no-hard-tabs)
Hard tabs

93-93: Column: 1 (MD010, no-hard-tabs)
Hard tabs

96-96: Column: 1 (MD010, no-hard-tabs)
Hard tabs

97-97: Column: 1 (MD010, no-hard-tabs)
Hard tabs

98-98: Column: 1 (MD010, no-hard-tabs)
Hard tabs

99-99: Column: 1 (MD010, no-hard-tabs)
Hard tabs

85-85: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

docs/guide/hooks.md

60-60: Column: 1 (MD010, no-hard-tabs)
Hard tabs

62-62: Column: 1 (MD010, no-hard-tabs)
Hard tabs

66-66: Column: 1 (MD010, no-hard-tabs)
Hard tabs

68-68: Column: 1 (MD010, no-hard-tabs)
Hard tabs

69-69: Column: 1 (MD010, no-hard-tabs)
Hard tabs

70-70: Column: 1 (MD010, no-hard-tabs)
Hard tabs

72-72: Column: 1 (MD010, no-hard-tabs)
Hard tabs

73-73: Column: 1 (MD010, no-hard-tabs)
Hard tabs

75-75: Column: 1 (MD010, no-hard-tabs)
Hard tabs

76-76: Column: 1 (MD010, no-hard-tabs)
Hard tabs

78-78: Column: 1 (MD010, no-hard-tabs)
Hard tabs

79-79: Column: 1 (MD010, no-hard-tabs)
Hard tabs

81-81: Column: 1 (MD010, no-hard-tabs)
Hard tabs

82-82: Column: 1 (MD010, no-hard-tabs)
Hard tabs

84-84: Column: 1 (MD010, no-hard-tabs)
Hard tabs

85-85: Column: 1 (MD010, no-hard-tabs)
Hard tabs

86-86: Column: 1 (MD010, no-hard-tabs)
Hard tabs

88-88: Column: 1 (MD010, no-hard-tabs)
Hard tabs

89-89: Column: 1 (MD010, no-hard-tabs)
Hard tabs

90-90: Column: 1 (MD010, no-hard-tabs)
Hard tabs

92-92: Column: 1 (MD010, no-hard-tabs)
Hard tabs

140-140: Column: 1 (MD010, no-hard-tabs)
Hard tabs

187-187: Column: 1 (MD010, no-hard-tabs)
Hard tabs

189-189: Column: 1 (MD010, no-hard-tabs)
Hard tabs

193-193: Column: 1 (MD010, no-hard-tabs)
Hard tabs

194-194: Column: 1 (MD010, no-hard-tabs)
Hard tabs

196-196: Column: 1 (MD010, no-hard-tabs)
Hard tabs

197-197: Column: 1 (MD010, no-hard-tabs)
Hard tabs

199-199: Column: 1 (MD010, no-hard-tabs)
Hard tabs

200-200: Column: 1 (MD010, no-hard-tabs)
Hard tabs

201-201: Column: 1 (MD010, no-hard-tabs)
Hard tabs

203-203: Column: 1 (MD010, no-hard-tabs)
Hard tabs

204-204: Column: 1 (MD010, no-hard-tabs)
Hard tabs

206-206: Column: 1 (MD010, no-hard-tabs)
Hard tabs

216-216: Expected: 1; Actual: 2 (MD012, no-multiple-blanks)
Multiple consecutive blank lines

20-20: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

21-21: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

98-98: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

11-11: null (MD032, blanks-around-lists)
Lists should be surrounded by blank lines

docs/api/middleware/keyauth.md

21-21: Column: 1 (MD010, no-hard-tabs)
Hard tabs

22-22: Column: 1 (MD010, no-hard-tabs)
Hard tabs

23-23: Column: 1 (MD010, no-hard-tabs)
Hard tabs

24-24: Column: 1 (MD010, no-hard-tabs)
Hard tabs

28-28: Column: 1 (MD010, no-hard-tabs)
Hard tabs

32-32: Column: 1 (MD010, no-hard-tabs)
Hard tabs

33-33: Column: 1 (MD010, no-hard-tabs)
Hard tabs

35-35: Column: 1 (MD010, no-hard-tabs)
Hard tabs

36-36: Column: 1 (MD010, no-hard-tabs)
Hard tabs

37-37: Column: 1 (MD010, no-hard-tabs)
Hard tabs

38-38: Column: 1 (MD010, no-hard-tabs)
Hard tabs

42-42: Column: 1 (MD010, no-hard-tabs)
Hard tabs

44-44: Column: 1 (MD010, no-hard-tabs)
Hard tabs

45-45: Column: 1 (MD010, no-hard-tabs)
Hard tabs

46-46: Column: 1 (MD010, no-hard-tabs)
Hard tabs

47-47: Column: 1 (MD010, no-hard-tabs)
Hard tabs

48-48: Column: 1 (MD010, no-hard-tabs)
Hard tabs

50-50: Column: 1 (MD010, no-hard-tabs)
Hard tabs

51-51: Column: 1 (MD010, no-hard-tabs)
Hard tabs

52-52: Column: 1 (MD010, no-hard-tabs)
Hard tabs

54-54: Column: 1 (MD010, no-hard-tabs)
Hard tabs

83-83: Column: 1 (MD010, no-hard-tabs)
Hard tabs

84-84: Column: 1 (MD010, no-hard-tabs)
Hard tabs

85-85: Column: 1 (MD010, no-hard-tabs)
Hard tabs

86-86: Column: 1 (MD010, no-hard-tabs)
Hard tabs

87-87: Column: 1 (MD010, no-hard-tabs)
Hard tabs

88-88: Column: 1 (MD010, no-hard-tabs)
Hard tabs

92-92: Column: 1 (MD010, no-hard-tabs)
Hard tabs

93-93: Column: 1 (MD010, no-hard-tabs)
Hard tabs

94-94: Column: 1 (MD010, no-hard-tabs)
Hard tabs

95-95: Column: 1 (MD010, no-hard-tabs)
Hard tabs

96-96: Column: 1 (MD010, no-hard-tabs)
Hard tabs

100-100: Column: 1 (MD010, no-hard-tabs)
Hard tabs

101-101: Column: 1 (MD010, no-hard-tabs)
Hard tabs

103-103: Column: 1 (MD010, no-hard-tabs)
Hard tabs

104-104: Column: 1 (MD010, no-hard-tabs)
Hard tabs

105-105: Column: 1 (MD010, no-hard-tabs)
Hard tabs

106-106: Column: 1 (MD010, no-hard-tabs)
Hard tabs

110-110: Column: 1 (MD010, no-hard-tabs)
Hard tabs

112-112: Column: 1 (MD010, no-hard-tabs)
Hard tabs

113-113: Column: 1 (MD010, no-hard-tabs)
Hard tabs

114-114: Column: 1 (MD010, no-hard-tabs)
Hard tabs

115-115: Column: 1 (MD010, no-hard-tabs)
Hard tabs

116-116: Column: 1 (MD010, no-hard-tabs)
Hard tabs

117-117: Column: 1 (MD010, no-hard-tabs)
Hard tabs

121-121: Column: 1 (MD010, no-hard-tabs)
Hard tabs

123-123: Column: 1 (MD010, no-hard-tabs)
Hard tabs

124-124: Column: 1 (MD010, no-hard-tabs)
Hard tabs

125-125: Column: 1 (MD010, no-hard-tabs)
Hard tabs

126-126: Column: 1 (MD010, no-hard-tabs)
Hard tabs

127-127: Column: 1 (MD010, no-hard-tabs)
Hard tabs

129-129: Column: 1 (MD010, no-hard-tabs)
Hard tabs

130-130: Column: 1 (MD010, no-hard-tabs)
Hard tabs

131-131: Column: 1 (MD010, no-hard-tabs)
Hard tabs

132-132: Column: 1 (MD010, no-hard-tabs)
Hard tabs

133-133: Column: 1 (MD010, no-hard-tabs)
Hard tabs

134-134: Column: 1 (MD010, no-hard-tabs)
Hard tabs

135-135: Column: 1 (MD010, no-hard-tabs)
Hard tabs

136-136: Column: 1 (MD010, no-hard-tabs)
Hard tabs

137-137: Column: 1 (MD010, no-hard-tabs)
Hard tabs

139-139: Column: 1 (MD010, no-hard-tabs)
Hard tabs

165-165: Column: 1 (MD010, no-hard-tabs)
Hard tabs

166-166: Column: 1 (MD010, no-hard-tabs)
Hard tabs

167-167: Column: 1 (MD010, no-hard-tabs)
Hard tabs

168-168: Column: 1 (MD010, no-hard-tabs)
Hard tabs

176-176: Column: 1 (MD010, no-hard-tabs)
Hard tabs

178-178: Column: 1 (MD010, no-hard-tabs)
Hard tabs

179-179: Column: 1 (MD010, no-hard-tabs)
Hard tabs

180-180: Column: 1 (MD010, no-hard-tabs)
Hard tabs

181-181: Column: 1 (MD010, no-hard-tabs)
Hard tabs

183-183: Column: 1 (MD010, no-hard-tabs)
Hard tabs

184-184: Column: 1 (MD010, no-hard-tabs)
Hard tabs

185-185: Column: 1 (MD010, no-hard-tabs)
Hard tabs

186-186: Column: 1 (MD010, no-hard-tabs)
Hard tabs

187-187: Column: 1 (MD010, no-hard-tabs)
Hard tabs

188-188: Column: 1 (MD010, no-hard-tabs)
Hard tabs

190-190: Column: 1 (MD010, no-hard-tabs)
Hard tabs

191-191: Column: 1 (MD010, no-hard-tabs)
Hard tabs

192-192: Column: 1 (MD010, no-hard-tabs)
Hard tabs

194-194: Column: 1 (MD010, no-hard-tabs)
Hard tabs

195-195: Column: 1 (MD010, no-hard-tabs)
Hard tabs

196-196: Column: 1 (MD010, no-hard-tabs)
Hard tabs

198-198: Column: 1 (MD010, no-hard-tabs)
Hard tabs

230-230: Column: 1 (MD010, no-hard-tabs)
Hard tabs

231-231: Column: 1 (MD010, no-hard-tabs)
Hard tabs

232-232: Column: 1 (MD010, no-hard-tabs)
Hard tabs

233-233: Column: 1 (MD010, no-hard-tabs)
Hard tabs

234-234: Column: 1 (MD010, no-hard-tabs)
Hard tabs

235-235: Column: 1 (MD010, no-hard-tabs)
Hard tabs

236-236: Column: 1 (MD010, no-hard-tabs)
Hard tabs

237-237: Column: 1 (MD010, no-hard-tabs)
Hard tabs

238-238: Column: 1 (MD010, no-hard-tabs)
Hard tabs

239-239: Column: 1 (MD010, no-hard-tabs)
Hard tabs

240-240: Column: 1 (MD010, no-hard-tabs)
Hard tabs

241-241: Column: 1 (MD010, no-hard-tabs)
Hard tabs

74-74: Expected: 1; Actual: 2 (MD012, no-multiple-blanks)
Multiple consecutive blank lines

docs/api/middleware/logger.md

9-9: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

13-13: Expected: 1; Actual: 0; Above (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

109-109: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

123-123: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

10-10: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

12-12: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

110-110: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

124-124: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

100-100: Expected: 4; Actual: 9; Too many cells, extra data will be missing (MD056, table-column-count)
Table column count

docs/guide/routing.md

271-271: Expected: 1; Actual: 2 (MD012, no-multiple-blanks)
Multiple consecutive blank lines

144-144: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

182-182: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

187-187: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

200-200: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

205-205: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

22-22: null (MD036, no-emphasis-as-heading)
Emphasis used instead of a heading

58-58: null (MD036, no-emphasis-as-heading)
Emphasis used instead of a heading

167-167: null (MD036, no-emphasis-as-heading)
Emphasis used instead of a heading

227-227: null (MD036, no-emphasis-as-heading)
Emphasis used instead of a heading

247-247: null (MD036, no-emphasis-as-heading)
Emphasis used instead of a heading

docs/api/client.md

26-26: Column: 1 (MD010, no-hard-tabs)
Hard tabs

27-27: Column: 1 (MD010, no-hard-tabs)
Hard tabs

28-28: Column: 1 (MD010, no-hard-tabs)
Hard tabs

29-29: Column: 1 (MD010, no-hard-tabs)
Hard tabs

30-30: Column: 1 (MD010, no-hard-tabs)
Hard tabs

31-31: Column: 1 (MD010, no-hard-tabs)
Hard tabs

32-32: Column: 1 (MD010, no-hard-tabs)
Hard tabs

34-34: Column: 1 (MD010, no-hard-tabs)
Hard tabs

35-35: Column: 1 (MD010, no-hard-tabs)
Hard tabs

36-36: Column: 1 (MD010, no-hard-tabs)
Hard tabs

37-37: Column: 1 (MD010, no-hard-tabs)
Hard tabs

38-38: Column: 1 (MD010, no-hard-tabs)
Hard tabs

39-39: Column: 1 (MD010, no-hard-tabs)
Hard tabs

40-40: Column: 1 (MD010, no-hard-tabs)
Hard tabs

42-42: Column: 1 (MD010, no-hard-tabs)
Hard tabs

47-47: Column: 1 (MD010, no-hard-tabs)
Hard tabs

48-48: Column: 1 (MD010, no-hard-tabs)
Hard tabs

49-49: Column: 1 (MD010, no-hard-tabs)
Hard tabs

50-50: Column: 1 (MD010, no-hard-tabs)
Hard tabs

51-51: Column: 1 (MD010, no-hard-tabs)
Hard tabs

52-52: Column: 1 (MD010, no-hard-tabs)
Hard tabs

53-53: Column: 1 (MD010, no-hard-tabs)
Hard tabs

54-54: Column: 1 (MD010, no-hard-tabs)
Hard tabs

57-57: Column: 1 (MD010, no-hard-tabs)
Hard tabs

62-62: Expected: 1; Actual: 2 (MD012, no-multiple-blanks)
Multiple consecutive blank lines

63-63: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

23-23: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

59-59: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

572-572: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

docs/api/app.md

148-148: Column: 1 (MD010, no-hard-tabs)
Hard tabs

149-149: Column: 1 (MD010, no-hard-tabs)
Hard tabs

150-150: Column: 1 (MD010, no-hard-tabs)
Hard tabs

151-151: Column: 1 (MD010, no-hard-tabs)
Hard tabs

153-153: Column: 1 (MD010, no-hard-tabs)
Hard tabs

154-154: Column: 1 8000 (MD010, no-hard-tabs)
Hard tabs

155-155: Column: 1 (MD010, no-hard-tabs)
Hard tabs

157-157: Column: 1 (MD010, no-hard-tabs)
Hard tabs

158-158: Column: 1 (MD010, no-hard-tabs)
Hard tabs

159-159: Column: 1 (MD010, no-hard-tabs)
Hard tabs

160-160: Column: 1 (MD010, no-hard-tabs)
Hard tabs

428-428: Column: 1 (MD010, no-hard-tabs)
Hard tabs

431-431: Column: 1 (MD010, no-hard-tabs)
Hard tabs

456-456: Column: 1 (MD010, no-hard-tabs)
Hard tabs

457-457: Column: 1 (MD010, no-hard-tabs)
Hard tabs

458-458: Column: 1 (MD010, no-hard-tabs)
Hard tabs

459-459: Column: 1 (MD010, no-hard-tabs)
Hard tabs

460-460: Column: 1 (MD010, no-hard-tabs)
Hard tabs

461-461: Column: 1 (MD010, no-hard-tabs)
Hard tabs

568-568: Column: 1 (MD010, no-hard-tabs)
Hard tabs

569-569: Column: 1 (MD010, no-hard-tabs)
Hard tabs

570-570: Column: 1 (MD010, no-hard-tabs)
Hard tabs

571-571: Column: 1 (MD010, no-hard-tabs)
Hard tabs

572-572: Column: 1 (MD010, no-hard-tabs)
Hard tabs

573-573: Column: 1 (MD010, no-hard-tabs)
Hard tabs

593-593: Column: 1 (MD010, no-hard-tabs)
Hard tabs

594-594: Column: 1 (MD010, no-hard-tabs)
Hard tabs

595-595: Column: 1 (MD010, no-hard-tabs)
Hard tabs

596-596: Column: 1 (MD010, no-hard-tabs)
Hard tabs

597-597: Column: 1 (MD010, no-hard-tabs)
Hard tabs

598-598: Column: 1 (MD010, no-hard-tabs)
Hard tabs

454-454: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

657-657: null (MD047, single-trailing-newline)
Files should end with a single newline character

docs/api/middleware/cors.md

186-186: Expected: 0 or 2; Actual: 1 (MD009, no-trailing-spaces)
Trailing spaces

89-89: Column: 1 (MD010, no-hard-tabs)
Hard tabs

128-128: Column: 1 (MD010, no-hard-tabs)
Hard tabs

129-129: Column: 1 (MD010, no-hard-tabs)
Hard tabs

130-130: Column: 1 (MD010, no-hard-tabs)
Hard tabs

131-131: Column: 1 (MD010, no-hard-tabs)
Hard tabs

132-132: Column: 1 (MD010, no-hard-tabs)
Hard tabs

133-133: Column: 1 (MD010, no-hard-tabs)
Hard tabs

134-134: Column: 1 (MD010, no-hard-tabs)
Hard tabs

135-135: Column: 1 (MD010, no-hard-tabs)
Hard tabs

136-136: Column: 1 (MD010, no-hard-tabs)
Hard tabs

137-137: Column: 1 (MD010, no-hard-tabs)
Hard tabs

138-138: Column: 1 (MD010, no-hard-tabs)
Hard tabs

139-139: Column: 1 (MD010, no-hard-tabs)
Hard tabs

140-140: Column: 1 (MD010, no-hard-tabs)
Hard tabs

141-141: Column: 1 (MD010, no-hard-tabs)
Hard tabs

142-142: Column: 1 (MD010, no-hard-tabs)
Hard tabs

160-160: null (MD025, single-title, single-h1)
Multiple top-level headings in the same document

107-107: null (MD040, fenced-code-language)
Fenced code blocks should have a language specified

214-214: null (MD047, single-trailing-newline)
Files should end with a single newline character

docs/api/middleware/csrf.md

131-131: Column: 1 (MD010, no-hard-tabs)
Hard tabs

168-168: Column: 1 (MD010, no-hard-tabs)
Hard tabs

169-169: Column: 1 (MD010, no-hard-tabs)
Hard tabs

170-170: Column: 1 (MD010, no-hard-tabs)
Hard tabs

171-171: Column: 1 (MD010, no-hard-tabs)
Hard tabs

172-172: Column: 1 (MD010, no-hard-tabs)
Hard tabs

173-173: Column: 1 (MD010, no-hard-tabs)
Hard tabs

174-174: Column: 1 (MD010, no-hard-tabs)
Hard tabs

175-175: Column: 1 (MD010, no-hard-tabs)
Hard tabs

176-176: Column: 1 (MD010, no-hard-tabs)
Hard tabs

186-186: Column: 1 (MD010, no-hard-tabs)
Hard tabs

187-187: Column: 1 (MD010, no-hard-tabs)
Hard tabs

188-188: Column: 1 (MD010, no-hard-tabs)
Hard tabs

189-189: Column: 1 (MD010, no-hard-tabs)
Hard tabs

189-189: Column: 15 (MD010, no-hard-tabs)
Hard tabs

190-190: Column: 1 (MD010, no-hard-tabs)
Hard tabs

191-191: Column: 1 (MD010, no-hard-tabs)
Hard tabs

192-192: Column: 1 (MD010, no-hard-tabs)
Hard tabs

193-193: Column: 1 (MD010, no-hard-tabs)
Hard tabs

194-194: Column: 1 (MD010, no-hard-tabs)
Hard tabs

195-195: Column: 1 (MD010, no-hard-tabs)
Hard tabs

196-196: Column: 1 (MD010, no-hard-tabs)
Hard tabs

197-197: Column: 1 (MD010, no-hard-tabs)
Hard tabs

198-198: Column: 1 (MD010, no-hard-tabs)
Hard tabs

231-231: Column: 1 (MD010, no-hard-tabs)
Hard tabs

232-232: Column: 1 (MD010, no-hard-tabs)
Hard tabs

233-233: Column: 1 (MD010, no-hard-tabs)
Hard tabs

234-234: Column: 1 (MD010, no-hard-tabs)
Hard tabs

235-235: Column: 1 (MD010, no-hard-tabs)
Hard tabs

236-236: Column: 1 (MD010, no-hard-tabs)
Hard tabs

237-237: Column: 1 (MD010, no-hard-tabs)
Hard tabs

238-238: Column: 1 (MD010, no-hard-tabs)
Hard tabs

239-239: Column: 1 (MD010, no-hard-tabs)
Hard tabs

240-240: Column: 1 (MD010, no-hard-tabs)
Hard tabs

241-241: Column: 1 (MD010, no-hard-tabs)
Hard tabs

242-242: Column: 1 (MD010, no-hard-tabs)
Hard tabs

243-243: Column: 1 (MD010, no-hard-tabs)
Hard tabs

254-254: Column: 1 (MD010, no-hard-tabs)
Hard tabs

71-71: Expected: 1; Actual: 2 (MD012, no-multiple-blanks)
Multiple consecutive blank lines

docs/api/ctx.md

1201-1201: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1202-1202: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1203-1203: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1204-1204: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1205-1205: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1213-1213: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1214-1214: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1215-1215: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1223-1223: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1224-1224: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1225-1225: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1226-1226: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1234-1234: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1235-1235: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1236-1236: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1244-1244: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1245-1245: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1246-1246: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1247-1247: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1248-1248: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1249-1249: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1298-1298: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1399-1399: Column: 1 (MD010, no-hard-tabs)
Hard tabs

golangci-lint

middleware/monitor/monitor.go

[warning] 88-88: unchecked-type-assertion: type cast result is unchecked in monitPIDCPU.Load().(float64) - type assertion result ignored (revive)

[warning] 89-89: unchecked-type-assertion: type cast result is unchecked in monitPIDRAM.Load().(uint64) - type assertion result ignored (revive)

[warning] 90-90: unchecked-type-assertion: type cast result is unchecked in monitPIDConns.Load().(int) - type assertion result ignored (revive)

[warning] 92-92: unchecked-type-assertion: type cast result is unchecked in monitOSCPU.Load().(float64) - type assertion result ignored (revive)

middleware/adaptor/adaptor_test.go

56-56: shadow: declaration of "err" shadows declaration at line 36 (govet)

middleware/session/session_test.go

534-534: assigned to originalSessionUUIDString, but reassigned without using the value (wastedassign)

600-600: assigned to originalSessionUUIDString, but reassigned without using the value (wastedassign)

app.go

26-26: import 'github.com/gofiber/fiber/v2/log' is not allowed from list 'Main' (depguard)

27-27: import 'github.com/gofiber/fiber/v2/utils' is not allowed from list 'Main' (depguard)

29-29: import 'github.com/valyala/fasthttp' is not allowed from list 'Main' (depguard)

936-936: shadow: declaration of "err" shadows declaration at line 927 (govet)

app_test.go

1521-1521: shadow: declaration of "err" shadows declaration at line 1518 (govet)

1557-1557: shadow: declaration of "err" shadows declaration at line 1554 (govet)

ctx.go

26-26: import 'github.com/gofiber/fiber/v2/internal/schema' is not allowed from list 'Main' (depguard)

27-27: import 'github.com/gofiber/fiber/v2/utils' is not allowed from list 'Main' (depguard)

776-776: assigned to i, but reassigned without using the value (wastedassign)

826-826: assigned to i, but reassigned without using the value (wastedassign)

ctx_test.go

2754-2754: shadow: declaration of "err" shadows declaration at line 2747 (govet)

4075-4075: shadow: declaration of "err" shadows declaration at line 4072 (govet)

5368-5368: shadow: declaration of "err" shadows declaration at line 5362 (govet)

LanguageTool

docs/api/middleware/healthcheck.md

[uncategorized] ~21-~21: Loose punctuation mark. (UNLIKELY_OPENING_PUNCTUATION)
Context: ...to true. - 503 Service Unavailable: Returned when the checker function eval...

docs/api/middleware/encryptcookie.md

[grammar] ~58-~58: Did you mean the verb “keeps”? For a parallel structure in formal text, use “it keeps”, because ‘random’ is an adjective. (PRP_IS_JJ_AND_VB)
Context: ...e values, so make sure it is random and keep it secret. You can run `openssl rand -b...

[uncategorized] ~69-~69: A determiner appears to be missing. Consider inserting it. (AI_EN_LECTOR_MISSING_DETERMINER)
Context: ...y to encode & decode cookies. Required. Key length should be 32 characters. | (No d...

docs/guide/hooks.md

[grammar] ~10-~10: The singular determiner ‘this’ may not agree with the plural noun ‘hooks’. Did you mean “these”? (THIS_NNS)
Context: ... to run some methods. Here is a list of this hooks: - OnRoute - [OnName]...

[uncategorized] ~35-~35: A comma may be missing after the conjunctive/linking adverb ‘Also’. (SENT_START_CONJUNCTIVE_LINKING_ADVERB_COMMA)
Context: ... functions on each route registeration. Also you can get route properties by **route...

[uncategorized] ~43-~43: A comma may be missing after the conjunctive/linking adverb ‘Also’. (SENT_START_CONJUNCTIVE_LINKING_ADVERB_COMMA)
Context: ...te user functions on each route naming. Also you can get route properties by **route...

[uncategorized] ~104-~104: A comma may be missing after the conjunctive/linking adverb ‘Also’. (SENT_START_CONJUNCTIVE_LINKING_ADVERB_COMMA)
Context: ... functions on each group registeration. Also you can get group properties by **group...

[uncategorized] ~112-~112: A comma may be missing after the conjunctive/linking adverb ‘Also’. (SENT_START_CONJUNCTIVE_LINKING_ADVERB_COMMA)
Context: ...te user functions on each group naming. Also you can get group properties by **group...

[uncategorized] ~174-~174: You might be missing the article “a” here. (AI_EN_LECTOR_MISSING_DETERMINER_A)
Context: ... process. The mount event is fired when sub-app is mounted on a parent app. The par...

[uncategorized] ~218-~218: Use a comma before ‘and’ if it connects two independent clauses (unless they are closely connected and short). (COMMA_COMPOUND_SENTENCE)
Context: ...f you use one of these routes on sub app and you mount it; paths of routes and group...

docs/api/middleware/keyauth.md

[uncategorized] ~7-~7: This expression is usually spelled with a hyphen. (BASED_HYPHEN)
Context: ...Keyauth Key auth middleware provides a key based authentication. ## Signatures ```go f...

[uncategorized] ~77-~77: The abbreviation “e.g.” (= for example) requires two periods. (E_G)
Context: ...of keyauth and apply a filter function (eg. authFilter) like so ```go package ma...

docs/api/middleware/logger.md

[style] ~101-~101: In American English, abbreviations like “etc.” require a period. (ETC_PERIOD)
Context: ...America/New_York" and "Asia/Chongqing", etc ...

docs/guide/routing.md

[uncategorized] ~41-~41: The official spelling of this programming framework is “Express.js”. (NODE_JS)
Context: ...tring("random.txt") }) ``` As with the expressJs framework, the order of the route decla...

[style] ~93-~93: This phrasing can be overused. Try elevating your writing with a more formal alternative. (IF_YOU_WANT)
Context: ...value, so you can use them in the route if you want, like in the custom methods of the [goo...

[uncategorized] ~93-~93: Use a comma before “and” if it connects two independent clauses (unless they are closely connected and short). (COMMA_COMPOUND_SENTENCE_2)
Context: ...backticks to make sure it is unambiguous and the escape character doesn't interfere ...

[formatting] ~142-~142: If the ‘because’ clause is essential to the meaning, do not use a comma before the clause. (COMMA_BEFORE_BECAUSE)
Context: ...e possibility of the regular expressions, because they are quite slow. The possibilities ...

[style] ~204-~204: The contraction ‘there’re’ is uncommon in written English. (THERE_RE_CONTRACTION_UNCOMMON)
Context: ...regex query when to register routes. So there're no performance overhead for regex const...

[grammar] ~204-~204: Possible agreement error. Did you mean “overheads”? (THERE_RE_MANY)
Context: ...ster routes. So there're no performance overhead for regex constraint. ```go app.Get(`/:...

[style] ~245-~245: Consider shortening or rephrasing this to strengthen your wording. (MAKE_CHANGES)
Context: ...dleware Functions that are designed to make changes to the request or response are called **mi...

docs/api/client.md

[misspelling] ~10-~10: Use “an” instead of ‘a’ if the following word starts with a vowel sound, e.g. ‘an article’, ‘an hour’. (EN_A_VS_AN)
Context: ...osition: 5 --- ## Start request Start a http request with http method and url. ...

[style] ~64-~64: The phrase ‘lots of’ might be wordy and overused. Consider using an alternative. (A_LOT_OF)
Context: ...p/blob/master/client.go#L603) which has lots of convenient helper methods such as dedic...

[uncategorized] ~318-~318: Possible missing article found. (AI_HYDRA_LEO_MISSING_A)
Context: ... ### MultipartForm MultipartForm sends multipart form request by setting the Content-Typ...

[uncategorized] ~429-~429: Possible missing article found. (AI_HYDRA_LEO_MISSING_AN)
Context: ... to be used again after one request. If agent is reusable, then it should be released...

docs/api/app.md

[uncategorized] ~235-~235: This verb may not be in the correct form. Consider using a different form for this context. (AI_EN_LECTOR_REPLACEMENT_VERB_FORM)
Context: ...rst closing all open listeners and then waits indefinitely for all connections to ret...

[uncategorized] ~239-~239: Possible missing comma found. (AI_HYDRA_LEO_MISSING_COMMA)
Context: ...es. ShutdownWithContext shuts down the server including by force if the context's dea...

[grammar] ~653-~653: Did you mean “are” or “were”? (SENT_START_NNS_IS)
Context: ...=> Hello, World! } ``` ## Hooks Hooks is a method to return [hooks](../guide/hoo...

docs/api/middleware/cors.md

[style] ~120-~120: Consider shortening this phrase to just ‘whether’, unless you mean ‘regardless of whether’. (WHETHER)
Context: ... | AllowCredentials indicates whether or not the response to the request can be expo...

[style] ~120-~120: Consider shortening this phrase to just ‘whether’, unless you mean ‘regardless of whether’. (WHETHER)
Context: ... to a preflight request, this indicates whether or not the actual request can be made using cr...

docs/api/middleware/csrf.md

[uncategorized] ~63-~63: Possible missing comma found. (AI_HYDRA_LEO_MISSING_COMMA)
Context: ..., it can't force a user to post to your application since that request won't come from your...

[uncategorized] ~216-~216: Loose punctuation mark. (UNLIKELY_OPENING_PUNCTUATION)
Context: ...d to Error Handler - ErrTokenNotFound: Indicates that the CSRF token was not f...

[uncategorized] ~217-~217: Loose punctuation mark. (UNLIKELY_OPENING_PUNCTUATION)
Context: ...token was not found. - ErrTokenInvalid: Indicates that the CSRF token is invali...

[uncategorized] ~218-~218: Loose punctuation mark. (UNLIKELY_OPENING_PUNCTUATION)
Context: ... CSRF token is invalid. - ErrNoReferer: Indicates that the referer was not supp...

[uncategorized] ~219-~219: Loose punctuation mark. (UNLIKELY_OPENING_PUNCTUATION)
Context: ...erer was not supplied. - ErrBadReferer: Indicates that the referer is invalid. ...

docs/api/ctx.md

[uncategorized] ~242-~242: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...aw()) // []byte("user=john") }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~262-~262: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...dy()) // []byte("user=john") }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~316-~316: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...lhost:3000/?name=john&pass=doe" ``` > _Returned value is only valid within the handler....

[style] ~373-~373: Consider a shorter alternative to avoid wordiness. (IN_ORDER_TO_PREMIUM)
Context: ... information from a ClientHello message in order to guide application logic in the GetCerti...

[typographical] ~396-~396: Consider adding a comma here. (PLEASE_COMMA)
Context: ...text() *fasthttp.RequestCtx ``` :::info Please read the [Fasthttp Documentation](https...

[uncategorized] ~486-~486: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...y", "doe") // "doe" // ... }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~576-~576: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ... or "" if not exist // .. }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~581-~581: Use a comma before “and” if it connects two independent clauses (unless they are closely connected and short). (COMMA_COMPOUND_SENTENCE_2)
Context: ...icate that the client cache is now stale and the full response should be sent. When...

[uncategorized] ~612-~612: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ..., "john") // "john" // .. }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~623-~623: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...eqHeaders() map[string][]string ``` > _Returned value is only valid within the handler....

[uncategorized] ~647-~647: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ..., "john") // "john" // .. }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~658-~658: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...spHeaders() map[string][]string ``` > _Returned value is only valid within the handler....

[uncategorized] ~704-~704: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...() // "google.com" // ... }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~1051-~1051: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...earch?q=something" // ... }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~1055-~1055: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...e..._](../#zero-allocation) ## Params Method can be used to get the route parameters...

[uncategorized] ~1100-~1100: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...f the first wildcard segment }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~1104-~1104: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...._](../#zero-allocation) ## ParamsInt Method can be used to get an integer from the ...

[uncategorized] ~1106-~1106: Possible missing comma found. (AI_HYDRA_LEO_MISSING_COMMA)
Context: ...teger from the route parameters. Please note if that parameter is not in the request...

[uncategorized] ~1128-~1128: The preposition ‘to’ seems more likely in this position. (AI_HYDRA_LEO_REPLACE_OF_TO)
Context: ... ... }) ``` This method is equivalent of using atoi with ctx.Params ## Params...

[grammar] ~1191-~1191: Did you mean “are” or “were”? (SENT_START_NNS_IS)
Context: ..." // ... }) ``` ## Queries Queries is a function that returns an object conta...

[uncategorized] ~1277-~1277: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ... "nike") // "nike" // ... }) ``` > _Returned value is only valid within the handler....

[typographical] ~1409-~1409: Consider adding a comma here. (PLEASE_COMMA)
Context: ...t" ``` :::info For more parser settings please look here Config :::...

[uncategorized] ~1503-~1503: Possible missing article found. (AI_HYDRA_LEO_MISSING_A)
Context: ...ects back to refer URL. It redirects to fallback URL if refer header doesn't exists, wit...

[uncategorized] ~1503-~1503: Possible missing article found. (AI_HYDRA_LEO_MISSING_A)
Context: ...er URL. It redirects to fallback URL if refer header doesn't exists, with specified s...

[grammar] ~1503-~1503: The auxiliary verb ‘do’ requires the base form of the verb. (DID_BASEFORM)
Context: ...to fallback URL if refer header doesn't exists, with specified status, a positive inte...

[uncategorized] ~1529-~1529: Did you mean: “By default,”? (BY_DEFAULT_COMMA)
Context: ... data and sends a text/html response. By default Render uses the default [**Go Templat...

[style] ~1529-~1529: To make your writing clearer, consider a more direct alternative. (TAKE_A_LOOK)
Context: ...want to use another View engine, please take a look at our [Template middleware](h...

[grammar] ~1537-~1537: Please check the verb form. (SHE_LIVE)
Context: ....string) error ``` ## Request Request return the [*fasthttp.Request](https://godoc....

[style] ~1537-~1537: Three successive sentences begin with the same word. Consider rewording the sentence or use a thesaurus to find a synonym. (ENGLISH_WORD_REPEAT_BEGINNING_RULE)
Context: ...Request Request return the [*fasthttp.Request](https://godoc.org/github.com/valyala/f...

[grammar] ~1587-~1587: Please check the verb form. (SHE_LIVE)
Context: ...s: shoe,hat" ``` ## Response Response return the [*fasthttp.Response](https://godoc...

[style] ~1587-~1587: Three successive sentences begin with the same word. Consider rewording the sentence or use a thesaurus to find a synonym. (ENGLISH_WORD_REPEAT_BEGINNING_RULE)
Context: ...sponse Response return the [*fasthttp.Response](https://godoc.org/github.com/valyala/f...

[uncategorized] ~1603-~1603: There should be no space here. (EG_SPACE)
Context: ...y be helpful after overriding the path, i. e. an internal redirect. Note that handler...

[uncategorized] ~1657-~1657: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ... return err } } ``` ## SaveFile Method is used to save any multipart file ...

[uncategorized] ~1794-~1794: Possible missing comma found. (AI_HYDRA_LEO_MISSING_COMMA)
Context: ...fo If the file contains an url specific character you have to escape it before passing th...

Additional comments not posted (75)

.github/workflows/linter.yml (2)

7-7: Branch trigger updated to v2.

This change aligns with the project's focus on the v2 branch. Ensure that all necessary CI checks are configured for this branch.

19-19: Updated Go setup action to version 5.

This update is crucial for maintaining compatibility with the latest Go versions and taking advantage of new features and fixes in the setup action.

.github/workflows/test.yml (2)

4-4: Branch trigger updated to v2.

Consistent with other workflow updates, this change focuses the CI triggers on the v2 branch.

28-28: Updated Go setup action to version 5.

This ensures the test workflow uses the latest features and fixes of the Go setup action.

middleware/redirect/redirect.go (1)

33-37: Enhanced redirect handling with query string support.

This addition smartly handles the inclusion of query strings in redirects, which can be crucial for maintaining state or parameters during the redirection process.

.github/workflows/benchmark.yml (2)

4-4: Branch trigger updated to v2.

This change ensures that benchmark tests are triggered for the correct branch, aligning with the project's focus.

24-24: Updated Go setup action to version 5.

This update allows the benchmark tests to utilize the latest Go versions and features.
.github/workflows/codeql-analysis.yml (4)
6-6: Update to trigger on branch v2 is appropriate.

This change aligns with the project's current branching strategy as mentioned in the AI-generated summary.

61-61: Update GitHub CodeQL analyze action to v3.

Consistency in action versions across the work 8000 flow is good, but ensure compatibility as previously noted.

47-47: Update GitHub CodeQL autobuild action to v3.

As with the init action, verify compatibility and absence of breaking changes.

39-39: Update GitHub CodeQL action to v3.

Ensure that v3 of the CodeQL action is compatible with the project's requirements and has no breaking changes from v2.

Verification successful

Update GitHub CodeQL action to v3.

The changelog indicates that the primary difference between v2 and v3 of the CodeQL Action is the Node.js version they support, with v3 running on Node.js 20 and v2 on Node.js 16. Functionally, v3 releases are identical to their corresponding v2 releases, ensuring compatibility.

The changelog explicitly states that v3 is compatible with Node.js 20 while continuing to release v2 for Node.js 16.

No breaking changes are indicated between v2 and v3, apart from the Node.js version support.

Changelog Reference:

"Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16."

Action Items:

Update the CodeQL action to v3 in your workflow file.

Ensure your environment supports Node.js 20.
Scripts executed

The following scripts were executed for the analysis:

Script:
#!/bin/bash
# Description: Verify compatibility of CodeQL action v3 with project requirements.

# Check GitHub's release notes for breaking changes between v2 and v3.
echo "Please manually check GitHub's release notes for breaking changes between CodeQL action v2 and v3."
Length of output: 209

Script:
#!/bin/bash
# Description: Fetch release notes for GitHub CodeQL action to check for breaking changes between v2 and v3.

# Fetch the release notes for the GitHub CodeQL action
curl -s https://api.github.com/repos/github/codeql-action/releases | jq -r '.[] | select(.tag_name == "v3" or .tag_name == "v2") | .body'
Length of output: 139

Script:
#!/bin/bash
# Description: Fetch all release notes for GitHub CodeQL action to manually check for breaking changes.

# Fetch all release notes for the GitHub CodeQL action
curl -s https://api.github.com/repos/github/codeql-action/releases | jq -r '.[] | "\(.tag_name): \(.body)"'
Length of output: 108791

Script:
#!/bin/bash
# Description: Fetch release notes for GitHub CodeQL action v3 to check for breaking changes.

# Fetch the release notes for the GitHub CodeQL action v3
curl -s https://api.github.com/repos/github/codeql-action/releases/tags/v3 | jq -r '.body'
Length of output: 95

Script:
#!/bin/bash
# Description: Fetch release notes for all GitHub CodeQL action v3.x.x to check for breaking changes.

# Fetch all release notes for the GitHub CodeQL action starting with v3
curl -s https://api.github.com/repos/github/codeql-action/releases | jq -r '.[] | select(.tag_name | startswith("v3")) | "\(.tag_name): \(.body)"'
Length of output: 148

Script:
#!/bin/bash
# Description: List all available tags for the GitHub CodeQL action to understand the naming convention and identify the latest version.

# Fetch all tags for the GitHub CodeQL action
curl -s https://api.github.com/repos/github/codeql-action/tags | jq -r '.[].name'
Length of output: 324

Script:
#!/bin/bash
# Description: Fetch release notes for the latest GitHub CodeQL action v3.25.10 to check for breaking changes.

# Fetch the release notes for the GitHub CodeQL action v3.25.10
curl -s https://api.github.com/repos/github/codeql-action/releases/tags/v3.25.10 | jq -r '.body'
Length of output: 101

Script:
#!/bin/bash
# Description: Fetch the general changelog or release notes for the GitHub CodeQL action to check for breaking changes between v2 and v3.

# Fetch the general changelog or release notes from the GitHub CodeQL action repository
curl -s https://raw.githubusercontent.com/github/codeql-action/main/CHANGELOG.md
Length of output: 52814
middleware/healthcheck/healthcheck.go (2)

1-1: Introduction of healthcheck package.

Ensure that the new package does not conflict with existing packages and is correctly structured.

28-61: Implementation of health check middleware.

The implementation appears robust and well-structured. However, ensure comprehensive testing, particularly around edge cases such as null checker functions and various cfg.Next conditions.

Would you like me to help in writing these tests or creating a GitHub issue to track this task?

middleware/cors/utils.go (1)

4-4: Review of CORS utility functions.

The utility functions appear to be well-implemented. However, ensure that the normalization and validation logic is thoroughly tested, especially for edge cases involving unusual domain and origin formats.

Would you like me to help in writing these tests or creating a GitHub issue to track this task?

Also applies to: 8-29, 30-61

middleware/requestid/requestid_test.go (1)

58-59: Introduced custom type for ContextKey: Ensure compatibility and correct usage.

A new custom type ContextKey has been introduced for handling request IDs in the context. This change enhances type safety and readability but requires careful integration to ensure it does not break existing functionality.

Also applies to: 66-66

middleware/healthcheck/config.go (1)

1-84: General Review: Healthcheck Configuration

The configuration for the healthcheck middleware is well-defined, with clear defaults and optional customization. The structure is consistent with best practices for middleware configuration in Fiber.

middleware/logger/config.go (1)

31-31: Updated logging format: Review for clarity and impact.

The logging format has been updated to include additional fields such as IP and error messages. This change enhances the detail in logs but may require adjustments in log parsing tools or monitoring setups.

Also applies to: 89-89

middleware/session/store.go (1)

17-19: Good addition of a mutex for session operations

Adding a mutex (mux) to synchronize session operations is a good practice, especially in a multi-threaded environment like web servers. This prevents race conditions and ensures data integrity.
docs/api/middleware/healthcheck.md (1)
32-32: Add blank lines around fenced code blocks

Markdown code blocks should be surrounded by blank lines to ensure proper rendering on all markdown parsers.
+ 
import (
    "github.com/gofiber/fiber/v2"
    "github.com/gofiber/fiber/v2/middleware/healthcheck"
)
+ 

+ 
var ConfigDefault = Config{
    LivenessProbe:     defaultLivenessProbe,
    ReadinessProbe:    defaultReadinessProbe,
    LivenessEndpoint:  "/livez",
    ReadinessEndpoint: "/readyz",
}
+ 
Also applies to: 95-95

Tools

Markdownlint

32-32: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines
docs/api/middleware/basicauth.md (1)

70-71: Update to use interface{} for context keys enhances flexibility

The change from string to interface{} for ContextUsername and ContextPassword allows for more flexibility in what can be stored in these fields. However, ensure that all type assertions in the middleware handle potential mismatches gracefully.
middleware/idempotency/idempotency.go (2)
15-19: Good use of local keys for tracking cache status

Using local keys to track whether a response was retrieved from or put into the cache is a clear and effective way to manage state within the middleware.

18-19: Consider adding documentation for local keys

While the use of local keys localsKeyIsFromCache and localsKeyWasPutToCache is effective, adding documentation explaining their purpose and usage would enhance maintainability and clarity for other developers.
+ // localsKeyIsFromCache indicates whether the response was retrieved from the cache.
+ // localsKeyWasPutToCache indicates whether the response was stored in the cache.
const (
    localsKeyIsFromCache   localsKeys = "idempotency_isfromcache"
    localsKeyWasPutToCache localsKeys = "idempotency_wasputtocache"
)
docs/api/middleware/encryptcookie.md (5)
7-11: Documentation clarity on middleware functionality

The note about the middleware encrypting cookie values but not names is clear and important for users to understand the scope of the encryption.

Tools

Markdownlint

7-7: Expected: 0 or 2; Actual: 1 (MD009, no-trailing-spaces)
Trailing spaces

Line range hint 25-47: Ensure consistent use of secret keys in examples

The example uses a hardcoded key, which is practical for simplicity but should include a caution about generating secure keys in production.
-    Key: "secret-thirty-2-character-string",
+    Key: encryptcookie.GenerateKey(), // Ensure to securely manage the key in production environments
58-61: Clarification on key management

The text suggests not to set Key to encryptcookie.GenerateKey() directly in the code to avoid generating a new key on every run, which is crucial for consistent encryption across sessions.

Tools

LanguageTool

[grammar] ~58-~58: Did you mean the verb “keeps”? For a parallel structure in formal text, use “it keeps”, because ‘random’ is an adjective. (PRP_IS_JJ_AND_VB)
Context: ...e values, so make sure it is random and keep it secret. You can run `openssl rand -b...

65-71: Config table clarity and completeness

The configuration table is well-structured, providing clear information about each property. However, consider adding more examples or default values where applicable to enhance understanding.

Tools

LanguageTool

[uncategorized] ~69-~69: A determiner appears to be missing. Consider inserting it. (AI_EN_LECTOR_MISSING_DETERMINER)
Context: ...y to encode & decode cookies. Required. Key length should be 32 characters. | (No d...

85-99: Best practice for middleware order

The guidance on placing the encryptcookie middleware before others that modify cookies is crucial for correct operation. This prevents issues where subsequent middleware might not be able to read the encrypted cookies.

Tools

Markdownlint

92-92: Column: 1 (MD010, no-hard-tabs)
Hard tabs

93-93: Column: 1 (MD010, no-hard-tabs)
Hard tabs

96-96: Column: 1 (MD010, no-hard-tabs)
Hard tabs

97-97: Column: 1 (MD010, no-hard-tabs)
Hard tabs

98-98: Column: 1 (MD010, no-hard-tabs)
Hard tabs

99-99: Column: 1 (MD010, no-hard-tabs)
Hard tabs

85-85: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines
docs/guide/hooks.md (7)

38-38: Clear documentation on OnRoute hook

The OnRoute hook documentation clearly explains its purpose and usage. It's important for users to understand when and how to use this hook effectively.

50-50: Clarification needed on OnName hook

The caution about OnName only working with naming routes and not groups is vital. This prevents confusion and ensures that users implement the hook correctly.

107-107: Explanation of OnGroup hook

The OnGroup hook allows for customization at the group level, which can be particularly useful for larger applications or those requiring modular route management.

119-119: Specific use case for OnGroupName hook

The distinction that OnGroupName only works with naming groups enhances clarity. It's good to have specific hooks for different levels of granularity.

127-127: Utility of OnListen hook

The OnListen hook documentation should clearly state its use cases, such as performing actions right after the server starts listening but before it handles any requests.

161-161: Role of OnFork in concurrent environments

The OnFork hook could be better explained, especially its role in applications that leverage multi-core processing or when the application is forked.

169-169: Clarification on OnShutdown hook

The OnShutdown hook is well-documented. It's crucial for cleanup tasks or gracefully shutting down resources, which is essential for maintaining application integrity.

middleware/logger/logger.go (1)

Line range hint 85-99: Ensure thread safety and performance optimization

The logger implementation uses mutexes and atomic operations to ensure thread safety and performance. However, the use of sync.Pool for managing Data objects is particularly noteworthy as it can significantly reduce GC pressure.
middleware/adaptor/adaptor.go (2)
79-79: Ensure header consistency during adaptations

The adaptation logic correctly copies headers from http.Request to fiber.Ctx. This is crucial for maintaining consistency between different middleware and ensuring that all headers are available in the Fiber context.

132-132: Handling of remote addresses in adaptations

The adaptation logic includes a check for missing ports in the remote address, which is a good detail to ensure robustness. However, the fallback port should be configurable or at least documented.
- r.RemoteAddr = net.JoinHostPort(r.RemoteAddr, "80")
+ r.RemoteAddr = net.JoinHostPort(r.RemoteAddr, defaultPort) // defaultPort should be configurable
middleware/csrf/config.go (3)

96-96: Use of interface{} for context keys

Using interface{} for the ContextKey allows for greater flexibility in what can be used as a key. This is a good practice as it accommodates various types of keys that users might want to employ.

127-127: Clarification on HandlerContextKey usage

The use of interface{} for the HandlerContextKey is consistent with the flexibility provided for the ContextKey. It's important to document examples of how this can be used effectively.

207-207: Dynamic token extraction based on configuration

The dynamic selection of token extraction method based on KeyLookup is a robust feature that enhances the middleware's flexibility. However, ensure that the error handling for incorrect configurations is user-friendly.

middleware/csrf/csrf.go (1)

133-133: Ensure proper token storage in context.

Storing the CSRF token in the context using a key that could be an interface{} is a flexible approach, but it's essential to ensure that the key is unique to avoid potential clashes with other middleware. Consider documenting recommended practices for key generation.
middleware/redirect/redirect_test.go (1)
47-52: Validate new redirect rules and parameter handling.

The addition of new redirect rules and handling of query parameters appears correct. Ensure that the redirect logic correctly appends or retains query parameters as specified, and consider adding more specific tests to verify this behavior thoroughly.

Also applies to: 113-118

Verification successful

The handling of query parameters in redirects is correctly tested.

The test case "redirect with query params" ensures that query parameters are retained during redirection.

middleware/redirect/redirect_test.go: Test case "redirect with query params" (lines 47-52)
Scripts executed

The following scripts were executed for the analysis:

Script:
#!/bin/bash
# Description: Search for tests specifically checking query parameter retention in redirects.
rg --type go 'queryParams' 'middleware/redirect/*_test.go'
Length of output: 128

Script:
#!/bin/bash
# Step 1: Find the correct directory structure
echo "Directory structure:"
find . -type d -name '*redirect*'

# Step 2: Search for tests specifically checking query parameter retention in redirects in the correct directory
echo "Searching for query parameter tests:"
rg --type go 'queryParams' $(find . -type d -name '*redirect*')
Length of output: 277

Script:
#!/bin/bash
# Search for all test cases related to redirects in the middleware/redirect directory
rg --type go 'redirect' ./middleware/redirect
Length of output: 1610

Script:
#!/bin/bash
# Display the contents of the test case related to "redirect with query params"
rg -A 10 -B 10 'redirect with query params' ./middleware/redirect/redirect_test.go
Length of output: 743
middleware/logger/tags.go (1)
142-145: Consider simplifying error handling with color configuration in logging.

The addition of color configuration in error logging enhances readability but ensure that the enableColors flag and the ColorScheme configuration are properly documented and validated elsewhere in your configuration setup to avoid runtime errors.

Verification successful

The enableColors flag and ColorScheme configuration are properly documented and validated.

The enableColors flag is defined and used in multiple places within the middleware/logger package, and it is documented in docs/api/middleware/logger.md. The ColorScheme configuration is also defined and used in various files, including app.go and middleware/logger/tags.go, and it is documented in docs/api/fiber.md.

enableColors documentation: docs/api/middleware/logger.md

ColorScheme documentation: docs/api/fiber.md
Scripts executed

The following scripts were executed for the analysis:

Script:
#!/bin/bash
# Description: Verify the presence of `enableColors` flag and `ColorScheme` configuration in the project.

# Test: Search for the configuration setup and documentation. Expect: Proper setup and documentation.
rg --type py 'enableColors' 'ColorScheme'
Length of output: 91

Script:
#!/bin/bash
# Description: Verify the presence of `enableColors` flag and `ColorScheme` configuration in the project.

# Test: Search for the configuration setup and documentation. Expect: Proper setup and documentation.
rg 'enableColors' --type go
rg 'ColorScheme' --type go
Length of output: 1717

Script:
#!/bin/bash
# Description: Verify the documentation and validation of `enableColors` and `ColorScheme` configuration in the project.

# Test: Search for documentation and validation logic. Expect: Proper documentation and validation.
rg 'enableColors' --type go
rg 'ColorScheme' --type go
rg 'enableColors' --type md
rg 'ColorScheme' --type md
Length of output: 3064
middleware/cors/utils_test.go (4)

10-53: Comprehensive test coverage for normalizeOrigin.

This test suite robustly checks various scenarios for the normalizeOrigin function, ensuring that origins are correctly normalized or rejected based on the criteria. Consider adding a few more edge cases if any are missing, such as origins with unusual characters or international domain names.

55-81: Thorough testing of matchScheme.

The test cases cover various scenarios for matching schemes in URLs, ensuring that the function behaves as expected across different cases. It's good practice to also test edge cases where the input might be malformed or unexpected.

83-112: Effective normalization tests in Test_normalizeDomain.

The test cases for normalizeDomain function effectively cover different URL formats. Ensure that the function handles more complex domain structures and punycode if applicable.

114-195: Benchmark and correctness tests for subdomain matching.

The benchmark test for subdomain matching (Benchmark_CORS_SubdomainMatch) and its corresponding correctness test (Test_CORS_SubdomainMatch) are well-written. Ensure that performance metrics are gathered and analyzed to confirm the efficiency of the subdomain matching logic.
middleware/cors/cors.go (4)
100-101: Potential configuration conflict between AllowOrigins and AllowOriginsFunc.

The warning and panic handling for conflicting or insecure configurations of AllowOrigins and AllowOriginsFunc are crucial to prevent misconfigurations that could lead to security vulnerabilities. Ensure that these checks are robust and well-documented.

Also applies to: 107-114

122-145: Comprehensive CORS handling logic with detailed configuration checks.

The CORS middleware setup includes detailed checks and configurations for handling different CORS scenarios. This setup ensures that CORS policies are enforced correctly according to the specified configuration. Ensure that all edge cases are covered, especially in complex configurations involving subdomains and wildcard origins.

Also applies to: 162-244

247-287: Efficient setting of CORS headers.

The function setCORSHeaders efficiently sets various CORS-related headers based on the configuration. It handles different scenarios like credentials and exposed headers correctly. Consider adding more inline comments to explain the logic, especially in complex conditional blocks.

18-21: Security implications of dynamic CORS origin handling need attention.

The introduction of AllowOriginsFunc for dynamic CORS origin evaluation is a powerful feature but can introduce security risks if not properly validated. Ensure thorough testing and consider adding examples in the documentation on how to safely implement this function.

Also applies to: 26-47

Verification successful

Documentation for AllowOriginsFunc includes comprehensive examples and security best practices.

The AllowOriginsFunc is well-documented in docs/api/middleware/cors.md. The documentation covers the function's usage, security considerations, and provides examples. This addresses the concerns raised in the review comment.

docs/api/middleware/cors.md: Contains detailed information about AllowOriginsFunc, including security considerations and usage examples.
Scripts executed

The following scripts were executed for the analysis:

Script:
#!/bin/bash
# Description: Verify the documentation and examples for `AllowOriginsFunc`.

# Test: Search for the usage and documentation of `AllowOriginsFunc`. Expect: Comprehensive examples and security best practices.
rg --type md 'AllowOriginsFunc'
Length of output: 3144
docs/guide/routing.md (1)

148-165: Clarification needed on route constraints and their non-validation role.

The documentation clearly states that constraints are not for validation and that mismatches will lead to a 404 error. This is an important distinction that helps prevent misuse of constraints as validation rules. Consider adding more examples to illustrate common mistakes and correct usage.

middleware/adaptor/adaptor_test.go (3)

39-40: Introduced new type for context key.

This change introduces a new type contextKeyType for context keys, which is a good practice for avoiding conflicts in context value keys.

303-303: Introduced middleware for setting context values.

This function setFiberContextValueMiddleware effectively allows setting arbitrary context values, which enhances flexibility in handling requests.

152-152: Potential issue with context value overwriting.

The TestContextSecondKey is set twice with different values. The second assignment might be an oversight or intentional for the test scenario. It's important to clarify this behavior.
docs/api/client.md (1)
Line range hint 64-64: Consider replacing "lots of" for conciseness.

The phrase "lots of" could be replaced with "many" to avoid wordiness and enhance professionalism in documentation.
- which has lots of convenient helper methods such as dedicated methods for request methods.
+ which has many convenient helper methods such as dedicated methods for request methods.
docs/api/middleware/cors.md (4)
186-186: Remove trailing space to adhere to Markdown standards.

There's an unnecessary trailing space at the end of line 186.
- The `AllowCredentials` option indicates whether the response to the request can be exposed when the credentials flag is true. If `AllowCredentials` is set to `true`, the middleware adds the header `Access-Control-Allow-Credentials: true` to the response. To prevent security vulnerabilities, `AllowCredentials` cannot be set to `true` if `AllowOrigins` is set to a wildcard (`*`). 
+ The `AllowCredentials` option indicates whether the response to the request can be exposed when the credentials flag is true. If `AllowCredentials` is set to `true`, the middleware adds the header `Access-Control-Allow-Credentials: true` to the response. To prevent security vulnerabilities, `AllowCredentials` cannot be set to `true` if `AllowOrigins` is set to a wildcard (`*`).
Tools

Markdownlint

186-186: Expected: 0 or 2; Actual: 1 (MD009, no-trailing-spaces)
Trailing spaces

89-89: Replace hard tabs with spaces for consistency in Markdown files.

The documentation uses hard tabs, which can lead to inconsistent formatting on different platforms or editors.
-	return dbCheckOrigin(db, origin)
+    return dbCheckOrigin(db, origin)
-	var ConfigDefault = Config{
-	    Next:         nil,
-	    AllowOriginsFunc: nil,
-	    AllowOrigins: "*",
-	    AllowMethods: strings.Join([]string{
-	        fiber.MethodGet,
-	        fiber.MethodPost,
-	        fiber.MethodHead,
-	        fiber.MethodPut,
-	        fiber.MethodDelete,
-	        fiber.MethodPatch,
-	    }, ","),
-	    AllowHeaders:     "",
-	    AllowCredentials: false,
-	    ExposeHeaders:    "",
+    var ConfigDefault = Config{
+        Next:         nil,
+        AllowOriginsFunc: nil,
+        AllowOrigins: "*",
+        AllowMethods: strings.Join([]string{
+            fiber.MethodGet,
+            fiber.MethodPost,
+            fiber.MethodHead,
+            fiber.MethodPut,
+            fiber.MethodDelete,
+            fiber.MethodPatch,
+        }, ","),
+        AllowHeaders:     "",
+        AllowCredentials: false,
+        ExposeHeaders:    "",
Also applies to: 128-142

Tools

Markdownlint

89-89: Column: 1 (MD010, no-hard-tabs)
Hard tabs

107-107: Specify language for fenced code block to improve readability.

Markdown best practices suggest specifying a language for code blocks to enable syntax highlighting.
- ```
+ ```text
panic: [CORS] 'AllowCredentials' is true, but 'AllowOrigins' cannot be set to `"*"`.
<details>
<summary>Tools</summary>

<details>
<summary>Markdownlint</summary><blockquote>

107-107: null (MD040, fenced-code-language)
Fenced code blocks should have a language specified

</blockquote></details>

</details>

---

`214-214`: **Ensure files end with a single newline character.**

The document should end with a single newline to adhere to POSIX standards and ensure compatibility with Unix-based tools.

```diff
214~
- Remember, the key to secure CORS configuration is specificity and caution. By carefully selecting which origins, methods, and headers are allowed, you can help protect your application from cross-origin attacks.
+ Remember, the key to secure CORS configuration is specificity and caution. By carefully selecting which origins, methods, and headers are allowed, you can help protect your application from cross-origin attacks.
+
Tools

Markdownlint

214-214: null (MD047, single-trailing-newline)
Files should end with a single newline character
middleware/session/session_test.go (1)

36-37: Optimize context management in session tests.

It appears that the removal of extra release and acquire calls is intended to address issues with the -race flag. This change should help in reducing unnecessary context switching and potential race conditions. However, it's crucial to ensure that these changes do not affect the logical flow of tests or introduce any new issues.

Also applies to: 84-85, 191-193, 222-222, 249-251, 336-338, 348-350, 404-406, 496-498, 513-513, 549-551, 615-619, 636-636

docs/api/middleware/csrf.md (2)

155-155: Update to interface{} for Context Keys

Changing the type of ContextKey from string to interface{} is a significant update that increases flexibility in how context keys are utilized within the middleware. This change allows for more complex keys or even using non-string types as keys, which can be beneficial in certain use cases.

162-162: Addition of HandlerContextKey

Introducing HandlerContextKey as an interface{} type is a good practice. It ensures that the CSRF handler can be flexibly stored and retrieved from the context, aligning with the dynamic typing nature of Go contexts. This change should be clearly documented to ensure developers understand its usage and implications.

middleware/csrf/csrf_test.go (4)

91-93: Session Save Operation

The addition of session save operations in the test case is crucial for ensuring that the session state is persisted correctly before making subsequent requests that rely on this state. This change helps in making the tests more reliable by explicitly confirming session persistence.

227-229: Session Save Operation in Token Expiration Test

Similar to the previous comment, ensuring that the session is saved after any modifications is vital for the accuracy of the test, especially in scenarios testing token expiration. This change is necessary for the test to reflect real-world usage accurately.

Line range hint 1001-1034: Benchmark Test for CSRF Middleware

The addition of a benchmark test for the CSRF middleware is a good practice, as it helps in understanding the performance implications of the CSRF checks under load. This is particularly useful for middleware that might be used in high-traffic scenarios.

1055-1059: Benchmark Test for Token Generation

Testing the performance of CSRF token generation is crucial, especially since this operation can be a potential bottleneck. This benchmark will help in identifying performance regressions and optimizations in the token generation process.

app.go (2)

33-33: Version Constant Updated

The version constant has been updated from "2.51.0" to "2.52.5". This change is consistent with the PR's aim to update the project's version, and it aligns with the information provided in the AI-generated summary.

Line range hint 29-29: Prohibited Import Usage

The import github.com/valyala/fasthttp is flagged as not allowed. Given that Fiber is built on top of Fasthttp, this flag might be a false positive, or the project might be transitioning to a different HTTP engine. Further clarification from the project maintainers would be needed.

middleware/cors/cors_test.go (2)

38-39: Ensure proper setting of request headers in CORS tests.

The addition of setting the AccessControlRequestMethod and Origin headers correctly simulates a preflight CORS request, which is necessary for accurately testing the MaxAge behavior with negative values.

53-53: Proper header setup for CORS default configuration tests.

Setting the Origin header and the AccessControlRequestMethod for OPTIONS requests is crucial for accurately testing CORS default behaviors. These changes ensure that the CORS middleware is tested under conditions that closely mimic actual cross-origin requests.

Also applies to: 63-64

docs/api/ctx.md (1)

903-924: Documentation Enhancement Approved

The updated documentation for the Locals method provides clear guidelines on its usage and behavior, especially with respect to resource management which is crucial for avoiding memory leaks and ensuring proper cleanup.

ctx.go (3)

970-973: Updated documentation for Locals method is clear and informative.

The added details about the removal of values and the closing of io.Closer implementations enhance the understanding of resource management within the context lifecycle.

1229-1229: Updated documentation for QueryBool correctly specifies default behavior.

Clarifying that the default return value for an empty or invalid key is false helps prevent errors and is a safer default for boolean 8000 operations.

Line range hint 26-26: Consider revising or justifying restricted imports.

Imports from github.com/gofiber/fiber/v2/internal/schema and github.com/gofiber/fiber/v2/utils are flagged as not allowed. If these are essential, consider updating the dependency guard configuration or provide justification for their use.

Also applies to: 27-27

Comments failed to post (13)

middleware/session/session_test.go
534-534: Address wasted assignments in Test_Session_Reset and Test_Session_Regenerate.

The variable originalSessionUUIDString is reassigned without being used, which could lead to confusion and unnecessary code complexity.
- originalSessionUUIDString = freshSession.ID()
+ // Removed the unnecessary reassignment
Also applies to: 600-600

Tools

golangci-lint

534-534: assigned to originalSessionUUIDString, but reassigned without using the value (wastedassign)
middleware/keyauth/config.go
44-44: Updated ContextKey to interface{}: Ensure proper type handling.

The change from a specific type (string) to interface{} for ContextKey increases flexibility in what can be used as a context key. However, this requires careful handling to avoid runtime type assertion errors.

Consider adding type checks or specific helper functions to safely retrieve values from the context, ensuring they match the expected type.

Example:
func GetContextKey(c *fiber.Ctx, key interface{}) (value interface{}, ok bool) {
    value, ok = c.Locals(key).(interface{})
    return
}
Also applies to: 90-90
middleware/basicauth/config.go
47-47: Updated context keys to interface{}: Verify type safety and usage.

Changing ContextUsername and ContextPassword to interface{} increases flexibility but requires careful handling to ensure type safety. Similar to the keyauth middleware, consider implementing type-safe retrieval functions.

Example type-safe retrieval function:
func GetUsername(c *fiber.Ctx) (username string, ok bool) {
    username, ok = c.Locals("username").(string)
    return
}
Also applies to: 52-52
middleware/logger/logger_test.go
150-150: Enhance error simulation in fakeOutput Write method.

Consider simulating various error conditions to ensure the logger can handle output errors gracefully during tests.
- return 0, nil
+ return 0, fmt.Errorf("simulated output error")
Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
	return 0, fmt.Errorf("simulated output error")
Improve error handling in fakeOutput Write method.

The method currently ignores errors. For testing purposes, consider introducing a mechanism to simulate error scenarios.
- return 0, nil
+ // Simulate an error scenario for robust testing
+ return 0, fmt.Errorf("error writing to fake output")
Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
	return 0, fmt.Errorf("error writing to fake output")
Optimize error handling in the fakeOutput Write method.

Currently, the method always returns nil for the error, which might mask issues during testing. Consider simulating possible write errors for more robust tests.
- return 0, nil
+ return 0, errors.New("simulated write error")
Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
	return 0, errors.New("simulated write error")
Consider using a more descriptive error handling strategy.

In the fakeOutput struct's Write method, errors are suppressed by returning nil. This might obscure issues during testing.
- return 0, nil
+ return 0, fmt.Errorf("write operation failed")
Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
	return 0, fmt.Errorf("write operation failed")
middleware/requestid/config.go
27-31: > [!TIP]

Codebase Verification

Changed ContextKey type from string to interface{}.

This change enhances flexibility but could potentially break existing integrations. The search results show several instances where ContextKey and similar keys are assumed to be string types, which could lead to runtime errors.

ctx.go: c.fasthttp.UserValue(userContextKey).(context.Context)

middleware/session/store.go: c.Locals(sessionIDContextKey).(string)

middleware/requestid/requestid_test.go: c.Locals(requestContextKey).(string)

middleware/requestid/requestid.go: c.Locals(cfg.ContextKey, rid)

middleware/keyauth/keyauth.go: c.Locals(cfg.ContextKey, key)

middleware/csrf/csrf.go: c.Locals(cfg.HandlerContextKey, &CSRFHandler{})

middleware/csrf/csrf.go: c.Locals(cfg.ContextKey, token)

middleware/adaptor/adaptor_test.go: r.Context().Value(expectedContextKey)

These instances need to be reviewed and potentially refactored to handle the new interface{} type appropriately.

Analysis chain

Changed ContextKey type from string to interface{}.

This change enhances flexibility but could potentially break existing integrations. It's crucial to verify that no existing functionality is adversely affected by this change.

Also applies to: 62-62
Scripts executed

The following scripts were executed for the analysis:

Script:
#!/bin/bash
# Description: Verify all usages of `ContextKey` to ensure they are compatible with the new interface type.

# Test: Search for `ContextKey` usage. Expect: All usages should handle `interface{}` type.
rg --type go $'ContextKey'
Length of output: 3308

Script:
#!/bin/bash
# Description: Verify all usages of `ContextKey` and similar keys to ensure compatibility with the new interface{} type.

# Extract lines where ContextKey and similar keys are used.
rg --type go 'ContextKey|HandlerContextKey|sessionIDContextKey|userContextKey' --context 5
Length of output: 20187
ctx_test.go
1376-1467: Comprehensive testing of context parsers.

The implementation of Test_Ctx_Parsers is thorough, testing a variety of context parsing scenarios effectively. The use of t.Parallel() ensures that tests are run concurrently, potentially speeding up the test suite. The helper function withValues simplifies the setup and teardown process, making the tests cleaner and more maintainable.

However, a few improvements could be made:

Documentation: It would be beneficial to add comments explaining the purpose of each parser test, especially for those unfamiliar with the codebase.

Error Handling: Currently, the function actionFn might return an error which is asserted to be nil in withValues. It's good practice to handle potential errors explicitly in your test cases to avoid swallowing unexpected errors.

Consider adding error handling in the test logic:
- utils.AssertEqual(t, nil, actionFn(c, testStruct))
+ err := actionFn(c, testStruct)
+ utils.AssertEqual(t, nil, err, "Expected no error, got: ", err)
Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
func Test_Ctx_Parsers(t *testing.T) {
	t.Parallel()
	// setup
	app := New()

	type TestStruct struct {
		Name             string
		Class            int
		NameWithDefault  string `json:"name2" xml:"Name2" form:"name2" cookie:"name2" query:"name2" params:"name2" reqHeader:"name2"`
		ClassWithDefault int    `json:"class2" xml:"Class2" form:"class2" cookie:"class2" query:"class2" params:"class2" reqHeader:"class2"`
	}

	withValues := func(t *testing.T, actionFn func(c *Ctx, testStruct *TestStruct) error) {
		t.Helper()
		c := app.AcquireCtx(&fasthttp.RequestCtx{})
		defer app.ReleaseCtx(c)
		testStruct := new(TestStruct)

		err := actionFn(c, testStruct)
		utils.AssertEqual(t, nil, err, "Expected no error, got: ", err)
		utils.AssertEqual(t, "foo", testStruct.Name)
		utils.AssertEqual(t, 111, testStruct.Class)
		utils.AssertEqual(t, "bar", testStruct.NameWithDefault)
		utils.AssertEqual(t, 222, testStruct.ClassWithDefault)
	}

	t.Run("BodyParser:xml", func(t *testing.T) {
		t.Parallel()
		withValues(t, func(c *Ctx, testStruct *TestStruct) error {
			c.Request().Header.SetContentType(MIMEApplicationXML)
			c.Request().SetBody([]byte(`<TestStruct><Name>foo</Name><Class>111</Class><Name2>bar</Name2><Class2>222</Class2></TestStruct>`))
			return c.BodyParser(testStruct)
		})
	})
	t.Run("BodyParser:form", func(t *testing.T) {
		t.Parallel()
		withValues(t, func(c *Ctx, testStruct *TestStruct) error {
			c.Request().Header.SetContentType(MIMEApplicationForm)
			c.Request().SetBody([]byte(`name=foo&class=111&name2=bar&class2=222`))
			return c.BodyParser(testStruct)
		})
	})
	t.Run("BodyParser:json", func(t *testing.T) {
		t.Parallel()
		withValues(t, func(c *Ctx, testStruct *TestStruct) error {
			c.Request().Header.SetContentType(MIMEApplicationJSON)
			c.Request().SetBody([]byte(`{"name":"foo","class":111,"name2":"bar","class2":222}`))
			return c.BodyParser(testStruct)
		})
	})
	t.Run("BodyParser:multiform", func(t *testing.T) {
		t.Parallel()
		withValues(t, func(c *Ctx, testStruct *TestStruct) error {
			body := []byte("--b\r\nContent-Disposition: form-data; name=\"name\"\r\n\r\nfoo\r\n--b\r\nContent-Disposition: form-data; name=\"class\"\r\n\r\n111\r\n--b\r\nContent-Disposition: form-data; name=\"name2\"\r\n\r\nbar\r\n--b\r\nContent-Disposition: form-data; name=\"class2\"\r\n\r\n222\r\n--b--")
			c.Request().SetBody(body)
			c.Request().Header.SetContentType(MIMEMultipartForm + `;boundary="b"`)
			c.Request().Header.SetContentLength(len(body))
			return c.BodyParser(testStruct)
		})
	})
	t.Run("CookieParser", func(t *testing.T) {
		t.Parallel()
		withValues(t, func(c *Ctx, testStruct *TestStruct) error {
			c.Request().Header.Set("Cookie", "name=foo;name2=bar;class=111;class2=222")
			return c.CookieParser(testStruct)
		})
	})
	t.Run("QueryParser", func(t *testing.T) {
		t.Parallel()
		withValues(t, func(c *Ctx, testStruct *TestStruct) error {
			c.Request().URI().SetQueryString("name=foo&name2=bar&class=111&class2=222")
			return c.QueryParser(testStruct)
		})
	})
	t.Run("ParamsParser", func(t *testing.T) {
		t.Parallel()
		withValues(t, func(c *Ctx, testStruct *TestStruct) error {
			c.route = &Route{Params: []string{"name", "name2", "class", "class2"}}
			c.values = [30]string{"foo", "bar", "111", "222"}
			return c.ParamsParser(testStruct)
		})
	})
	t.Run("ReqHeaderParser", func(t *T) {
		t.Parallel()
		withValues(t, func(c *Ctx, testStruct *TestStruct) error {
			c.Request().Header.Add("name", "foo")
			c.Request().Header.Add("name2", "bar")
			c.Request().Header.Add("class", "111")
			c.Request().Header.Add("class2", "222")
			return c.ReqHeaderParser(testStruct)
		})
	})
}
middleware/healthcheck/healthcheck_test.go

1-237: Enhance test coverage for edge cases.

The tests cover basic scenarios well. However, consider adding tests for edge cases, such as invalid configurations or network failures, to ensure the healthcheck middleware handles all potential real-world scenarios robustly.

Would you like me to help draft some additional test cases for these scenarios?

docs/api/middleware/logger.md

95-114: Clarify new configuration options in logger documentation.

The updated configuration options for the logger middleware, including new tags and formatting options, are well-documented. However, consider adding examples of how these new options can be used in practice to give users better guidance on implementing custom logging solutions.

Tools

LanguageTool

[style] ~101-~101: In American English, abbreviations like “etc.” require a period. (ETC_PERIOD)
Context: ...America/New_York" and "Asia/Chongqing", etc ...

Markdownlint

109-109: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

110-110: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

100-100: Expected: 4; Actual: 9; Too many cells, extra data will be missing (MD056, table-column-count)
Table column count
middleware/monitor/monitor.go
63-64: Optimization: Use a single call to runtime.NumCPU()

Currently, numcpu is obtained each time updateStatistics is called. Since the number of CPUs does not change at runtime, consider moving this call outside the loop to optimize performance.
- numcpu := runtime.NumCPU()
- updateStatistics(p, numcpu)
+ numcpu := runtime.NumCPU()
+ updateStatistics(p, numcpu)
Committable suggestion was skipped due to low confidence.

105-108: Refactor error handling in updateStatistics

The function updateStatistics could be refactored to handle errors more cleanly. Currently, the error handling is fragmented and could be centralized for better readability and maintenance.
func updateStatistics(p *process.Process, numcpu int) {
    if pidCPU, err := p.Percent(0); err != nil {
        log.Errorf("Error getting process CPU percent: %v", err)
    } else {
        monitPIDCPU.Store(pidCPU / float64(numcpu))
    }
    // Repeat pattern for other statistics
}
Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
func updateStatistics(p *process.Process, numcpu int) {
    if pidCPU, err := p.Percent(0); err != nil {
        log.Errorf("Error getting process CPU percent: %v", err)
    } else {
        monitPIDCPU.Store(pidCPU / float64(numcpu))
    }
    // Repeat pattern for other statistics
}
middleware/session/store.go
136-146: Improve error handling in decodeSessionData

The error handling in decodeSessionData could be improved by checking the result of byteBuffer.Write(rawData) and handling potential errors from gob.NewDecoder.
func (s *Session) decodeSessionData(rawData []byte) error {
    mux.Lock()
    defer mux.Unlock()
    if _, err := s.byteBuffer.Write(rawData); err != nil {
        return fmt.Errorf("error writing session data: %w", err)
    }
    encCache := gob.NewDecoder(s.byteBuffer)
    if err := encCache.Decode(&s.data.Data); err != nil {
        return fmt.Errorf("failed to decode session data: %w", err)
    }
    return nil
}
Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
// decodeSessionData decodes the session data from raw bytes.
func (s *Session) decodeSessionData(rawData []byte) error {
	mux.Lock()
	defer mux.Unlock()
	if _, err := s.byteBuffer.Write(rawData); err != nil {
		return fmt.Errorf("error writing session data: %w", err)
	}
	encCache := gob.NewDecoder(s.byteBuffer)
	if err := encCache.Decode(&s.data.Data); err != nil {
		return fmt.Errorf("failed to decode session data: %w", err)
	}
	return nil
}
.github/scripts/sync_docs.sh
30-30: > [!TIP]

Codebase Verification

Lack of error handling for 'release' event in the documentation synchronization script.

The current script does not include explicit error handling for the 'release' event. It is recommended to add appropriate error handling to ensure robustness.

Consider adding error handling mechanisms, such as checking the success of each command and logging errors if they occur.

Analysis chain

Handling of 'release' event in documentation synchronization script.

Ensure that the script correctly handles the 'release' event, especially in terms of error handling and edge cases.

Would you like me to help in improving error handling or creating a GitHub issue to track this task?
Scripts executed

The following scripts were executed for the analysis:

Script:
#!/bin/bash
# Description: Verify correct handling of 'release' event.

# Check for error handling in the release event section.
rg --type bash $'if \[\[ \$\? -ne 0 \]\]; then'
Length of output: 76

Script:
#!/bin/bash
# Description: Verify correct handling of 'release' event in the sync_docs.sh script.

# Search for error handling within the sync_docs.sh script, especially in the 'release' event section.
rg 'if \[\[ \$\? -ne 0 \]\]; then' .github/scripts/sync_docs.sh
Length of output: 65

Script:
#!/bin/bash
# Description: Verify any form of error handling or logging in the sync_docs.sh script.

# Search for common error handling patterns and logging mechanisms within the sync_docs.sh script.
rg 'if \[\[ \$\? -ne 0 \]\]; then|echo|exit' .github/scripts/sync_docs.sh
Length of output: 153

Script:
#!/bin/bash
# Description: Verify error handling in the context of the 'release' event in the sync_docs.sh script.

# Display lines around the 'release' event condition to check for error handling.
rg -A 10 -B 10 'if \[ "\$EVENT" == "release" \]; then' .github/scripts/sync_docs.sh
Length of output: 653
docs/api/middleware/requestid.md
48-48: Update to ContextKey type in documentation.

The change from string to interface{} should be clearly explained to avoid confusion. Consider adding a section on why this change was made and its implications.
- ContextKey: string
+ ContextKey: interface{}
Committable suggestion was skipped due to low confidence.

Walkthrough

This update extensively reforms the documentation, scripts, and workflow configurations, focusing primarily on improving clarity, efficiency, and maintainability. Noteworthy changes involve modifications to file triggers, version constants, public entity declarations, and documentation enhancements. New features include the introduction of a health-check middleware and refined handling in session management, ensuring a more robust and secure interaction in the Fiber framework.

Changes

File(s) / Component(s)	Summary
`.github/CONTRIBUTING.md`	Corrected a grammatical error related to unit tests requirement in pull requests.
`.github/pull_request_template.md`	Removed instructions for version 3 changes; updated URL reference.
`.github/release-drafter.yml`	Added configurations for `commitish` and updated `include-labels` and `exclude-labels`.
`.github/scripts/sync_docs.sh`	Improved conditional structure to better handle push and release events.
`.github/workflows/benchmark.yml`, `linter.yml`, `test.yml`	Updated trigger branches to `v2`; revised Go setup action version from `v4` to `v5`.
`.github/workflows/codeql-analysis.yml`	Updated CodeQL action steps versions from `v2` to `v3`.
`app.go`	Updated version constant from "2.51.0" to "2.52.5".
`app_test.go`	Added/removed benchmarking functions for testing various flow scenarios.
`ctx.go`, `ctx_test.go`	Enhanced `Ctx` struct with detailed documentation and additional test functions for parsers.
`docs/api/...`	Multiple documentation files updated for better clarity, formatting, and additional usage details.
`middleware/adaptor/adaptor.go`, `middleware/cors/cors.go`	Set request headers host; refined CORS functionality and security.
`middleware/session/store.go`	Enhanced session management with global mutex, new session handling mechanisms, and refactored methods.

Poem

In the code where fibers twine, 🐇
New changes sparkle, oh so fine, ✨
Docs refined, workflows grace,
Each line a bunny's happy place.

With mutex strength and parsers true,
Sessions hold like morning dew,
Rejoice, dear code, in what’s anew. 🚀

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

Tips

Chat

There are 3 ways to chat with CodeRabbit:

Review comments: Directly reply to a review comment made by CodeRabbit. Example:
- I pushed a fix in commit <commit_id>.
- Generate unit testing code for this file.
- Open a follow-up GitHub issue for this discussion.
Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
- @coderabbitai generate unit testing code for this file.
- @coderabbitai modularize this function.
PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
- @coderabbitai generate interesting stats about this repository and render them as a table.
- @coderabbitai show all the console.log statements in this repository.
- @coderabbitai read src/utils.ts and generate unit testing code.
- @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
- @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

@coderabbitai pause to pause the reviews on a PR.
@coderabbitai resume to resume the paused reviews.
@coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
@coderabbitai full review to do a full review from scratch and review all the files again.
@coderabbitai summary to regenerate the summary of the PR.
@coderabbitai resolve resolve all the CodeRabbit review comments.
@coderabbitai configuration to show the current CodeRabbit configuration for the repository.
@coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configration File (`.coderabbit.yaml`)

You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
Please see the configuration documentation for more information.
If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

Visit our Documentation for detailed information on how to use CodeRabbit.
Join our Discord Community to get help, request features, and share feedback.
Follow us on X/Twitter for updates and announcements.

coderabbitai

Actionable comments posted: 16

Outside diff range and nitpick comments (20)

middleware/monitor/monitor.go (1)

Line range hint 88-92: Handle unchecked type assertions more robustly

The type assertions in the middleware handler are unchecked, which could lead to panics if the types do not match. Consider adding error handling or checks to prevent potential runtime panics.

- data.PID.CPU, _ = monitPIDCPU.Load().(float64) - data.PID.RAM, _ = monitPIDRAM.Load().(uint64) - data.PID.Conns, _ = monitPIDConns.Load().(int) + data.PID.CPU, ok = monitPIDCPU.Load().(float64) + if !ok { + // Handle error or set default value + } + data.PID.RAM, ok = monitPIDRAM.Load().(uint64) + if !ok { + // Handle error or set default value + } + data.PID.Conns, ok = monitPIDConns.Load().(int) + if !ok { + // Handle error or set default value + }

middleware/session/store.go (2)

46-46: Consider using gob.RegisterName for versioned data structures

While gob.Register(i) is sufficient for most use cases, consider using gob.RegisterName if you plan to support different versions of the same data structure in the future.

Line range hint 51-92: Refactor session retrieval logic for clarity and error handling

The session retrieval logic in Get is complex and mixes several concerns. Consider refactoring it to separate concerns and improve error handling.

func (s *Store) Get(c *fiber.Ctx) (*Session, error) { id, fresh, err := s.retrieveSessionID(c) if err != nil { return nil, err } rawData, err := s.fetchSessionData(id) if err != nil { return nil, err } return s.createSession(c, id, rawData, fresh) }

middleware/logger/logger.go (1)

Line range hint 85-99: Potential issue with error handling in logging

The manual call to the error handler within the logger could lead to unexpected behaviors if not properly managed. It's crucial to ensure that errors are handled consistently and that the logger does not interfere with the application's overall error management strategy.

- if err := errHandler(c, chainErr); err != nil { + if chainErr != nil { + if err := errHandler(c, chainErr); err != nil { + log.Println("Error handling failed:", err) + } + }

docs/api/middleware/keyauth.md (1)

Line range hint 1-50: Consider adding more detailed descriptions for configuration options.

The documentation provides a good overview of how to use the keyauth middleware, but it could benefit from more detailed descriptions of each configuration option. This would help users better understand how to customize the middleware for their specific needs.

Tools

Markdownlint

47-47: Column: 1 (MD010, no-hard-tabs)
Hard tabs

48-48: Column: 1 (MD010, no-hard-tabs)
Hard tabs

50-50: Column: 1 (MD010, no-hard-tabs)
Hard tabs

51-51: Column: 1 (MD010, no-hard-tabs)
Hard tabs

52-52: Column: 1 (MD010, no-hard-tabs)
Hard tabs

middleware/csrf/csrf.go (1)

Line range hint 224-238: Validate referer header securely.

The implementation of refererMatchesHost adds security by ensuring the referer header matches the expected host. However, it's crucial to handle the potential for URL parsing errors and incorrect host headers robustly. Ensure that error handling is comprehensive and consider logging unexpected conditions.

+ if err != nil { + log.Errorf("Error parsing referer URL: %v", err) + return err + }

middleware/adaptor/adaptor_test.go (1)

Line range hint 56-56: Variable shadowing issue detected.

The redeclaration of err here shadows an earlier declaration, which can lead to subtle bugs.

- body, err := io.ReadAll(r.Body) + body, errRead := io.ReadAll(r.Body) + utils.AssertEqual(t, nil, errRead)

docs/api/client.md (3)

Line range hint 10-10: Correct article usage before vowel sounds.

The phrase should be corrected to "Start an HTTP request" instead of "Start a HTTP request" to follow proper grammar rules concerning articles before vowel sounds.

- Start a http request with http method and url. + Start an http request with http method and url.

Line range hint 318-318: Add missing article for clarity.

The sentence should include the article "a" for grammatical correctness.

- MultipartForm sends multipart form request by setting the Content-Type header to `multipart/form-data`. + MultipartForm sends a multipart form request by setting the Content-Type header to `multipart/form-data`.

Line range hint 429-429: Add missing article for clarity.

The sentence should include the article "an" for grammatical correctness.

- If agent is reusable, then it should be released manually when it is no longer used. + If an agent is reusable, then it should be released manually when it is no longer used.

docs/api/app.md (3)

Line range hint 235-235: Verb form correction for grammatical accuracy.

The verb "waits" may need to be adjusted for correct tense alignment in the documentation.

- then waits indefinitely for all connections to return to idle before shutting down. + then wait indefinitely for all connections to return to idle before shutting down.

Line range hint 239-239: Add missing comma for clarity and grammatical correctness.

Including a comma after "server" will improve the readability and correctness of the sentence.

- ShutdownWithContext shuts down the server including by force if the context's deadline is exceeded. + ShutdownWithContext shuts down the server, including by force if the context's deadline is exceeded.

Line range hint 653-653: Correct verb form for consistency and accuracy.

The verb "is" should be changed to "are" to agree with the plural subject "Hooks."

- Hooks is a method to return [hooks](../guide/hooks.md) property. + Hooks are methods to return the [hooks](../guide/hooks.md) property.

app.go (3)

Line range hint 26-26: Prohibited Import Usage

The import github.com/gofiber/fiber/v2/log is flagged as not allowed. This could be due to project-specific guidelines on allowed libraries or due to an attempt to minimize dependencies.

- import "github.com/gofiber/fiber/v2/log"

Line range hint 27-27: Prohibited Import Usage

Similarly, the import github.com/gofiber/fiber/v2/utils is also flagged as not allowed. This suggests a need to either adjust project guidelines or find alternative utilities that comply with the allowed libraries.

- import "github.com/gofiber/fiber/v2/utils"

Line range hint 936-936: Variable Shadowing Issue

The declaration of err here shadows an earlier declaration, which can lead to unexpected behavior or bugs by using the wrong err variable at runtime.

- err = <-channel + serverErr = <-channel

docs/api/ctx.md (3)

Line range hint 242-242: Grammar and Typographical Corrections Needed

There are several places in the documentation where articles are missing or there are minor grammatical issues. These should be corrected to improve the readability and professionalism of the documentation.

- > _Returned value is only valid within the handler. + > _The returned value is only valid within the handler.

Also applies to: 262-262, 316-316, 486-486, 576-576, 612-612, 647-647, 658-658, 704-704, 1051-1051, 1055-1055, 1100-1100, 1104-1104

Line range hint 1106-1106: Add a comma for clarity in the documentation of QueryParser.

A comma should be added after "Please note" to improve the readability of the sentence.

- Please note if that parameter is not in the request, zero will be returned. + Please note, if that parameter is not in the request, zero will be returned.

Line range hint 1794-1794: Documentation Approval and Minor Typographical Correction

The Secure method documentation is clear and informative. However, a minor typographical error should be corrected.

- If the file contains an url specific character you have to escape it before passing the file path into the `sendFile` function. + If the file contains a URL-specific character, you have to escape it before passing the file path into the `sendFile` function.

ctx.go (1)

Line range hint 776-776: Address wasted assignments in loops.

Variables i are reassigned in loops without being used, which could lead to inefficiencies or logical errors. Consider reviewing the logic to ensure the intended operation is performed.

- i, j = j+1, j+2 + i = j + 1 + j = j + 2

Also applies to: 826-826

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 7a2e99b and 57ac63e.

Files ignored due to path filters (2)

go.mod is excluded by !**/*.mod

go.sum is excluded by !**/*.sum, !**/*.sum

Files selected for processing (55)

.github/CONTRIBUTING.md (1 hunks)

.github/pull_request_template.md (2 hunks)

.github/release-drafter.yml (1 hunks)

.github/scripts/sync_docs.sh (1 hunks)

.github/workflows/benchmark.yml (2 hunks)

.github/workflows/codeql-analysis.yml (3 hunks)

.github/workflows/linter.yml (2 hunks)

.github/workflows/release-drafter.yml (1 hunks)

.github/workflows/sync-docs.yml (1 hunks)

.github/workflows/test.yml (2 hunks)

.github/workflows/vulncheck.yml (2 hunks)

app.go (1 hunks)

app_test.go (2 hunks)

ctx.go (2 hunks)

ctx_test.go (1 hunks)

docs/api/app.md (2 hunks)

docs/api/client.md (1 hunks)

docs/api/ctx.md (3 hunks)

docs/api/middleware/basicauth.md (1 hunks)

docs/api/middleware/cors.md (3 hunks)

docs/api/middleware/csrf.md (2 hunks)

docs/api/middleware/encryptcookie.md (4 hunks)

docs/api/middleware/healthcheck.md (1 hunks)

docs/api/middleware/keyauth.md (2 hunks)

docs/api/middleware/logger.md (1 hunks)

docs/api/middleware/requestid.md (1 hunks)

docs/guide/hooks.md (5 hunks)

docs/guide/routing.md (1 hunks)

middleware/adaptor/adaptor.go (2 hunks)

middleware/adaptor/adaptor_test.go (7 hunks)

middleware/basicauth/config.go (2 hunks)

middleware/cors/cors.go (4 hunks)

middleware/cors/cors_test.go (17 hunks)

middleware/cors/utils.go (1 hunks)

middleware/cors/utils_test.go (1 hunks)

middleware/csrf/config.go (3 hunks)

middleware/csrf/csrf.go (4 hunks)

middleware/csrf/csrf_test.go (6 hunks)

middleware/encryptcookie/config.go (1 hunks)

middleware/healthcheck/config.go (1 hunks)

middleware/healthcheck/healthcheck.go (1 hunks)

middleware/healthcheck/healthcheck_test.go (1 hunks)

middleware/idempotency/idempotency.go (1 hunks)

middleware/keyauth/config.go (2 hunks)

middleware/logger/config.go (2 hunks)

middleware/logger/logger.go (2 hunks)

middleware/logger/logger_test.go (1 hunks)

middleware/logger/tags.go (1 hunks)

middleware/monitor/monitor.go (3 hunks)

middleware/redirect/redirect.go (1 hunks)

middleware/redirect/redirect_test.go (2 hunks)

middleware/requestid/config.go (2 hunks)

middleware/requestid/requestid_test.go (1 hunks)

middleware/session/session_test.go (18 hunks)

middleware/session/store.go (4 hunks)

Files not processed due to max files limit (1)

middleware/session/store_test.go

Files not reviewed due to errors (1)

app_test.go (no review received)

Files skipped from review due to trivial changes (7)

.github/CONTRIBUTING.md

.github/pull_request_template.md

.github/release-drafter.yml

.github/workflows/release-drafter.yml

.github/workflows/sync-docs.yml

.github/workflows/vulncheck.yml

middleware/encryptcookie/config.go

Additional context used

Markdownlint

docs/api/middleware/requestid.md

59-59: Column: 1 (MD010, no-hard-tabs)
Hard tabs

60-60: Column: 1 (MD010, no-hard-tabs)
Hard tabs

50-50: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

docs/api/middleware/healthcheck.md

62-62: Column: 1 (MD010, no-hard-tabs)
Hard tabs

63-63: Column: 1 (MD010, no-hard-tabs)
Hard tabs

64-64: Column: 1 (MD010, no-hard-tabs)
Hard tabs

65-65: Column: 1 (MD010, no-hard-tabs)
Hard tabs

67-67: Column: 1 (MD010, no-hard-tabs)
Hard tabs

68-68: Column: 1 (MD010, no-hard-tabs)
Hard tabs

69-69: Column: 1 (MD010, no-hard-tabs)
Hard tabs

70-70: Column: 1 (MD010, no-hard-tabs)
Hard tabs

71-71: Column: 1 (MD010, no-hard-tabs)
Hard tabs

72-72: Column: 1 (MD010, no-hard-tabs)
Hard tabs

74-74: Column: 1 (MD010, no-hard-tabs)
Hard tabs

75-75: Column: 1 (MD010, no-hard-tabs)
Hard tabs

76-76: Column: 1 (MD010, no-hard-tabs)
Hard tabs

77-77: Column: 1 (MD010, no-hard-tabs)
Hard tabs

79-79: Column: 1 (MD010, no-hard-tabs)
Hard tabs

80-80: Column: 1 (MD010, no-hard-tabs)
Hard tabs

81-81: Column: 1 (MD010, no-hard-tabs)
Hard tabs

82-82: Column: 1 (MD010, no-hard-tabs)
Hard tabs

83-83: Column: 1 (MD010, no-hard-tabs)
Hard tabs

84-84: Column: 1 (MD010, no-hard-tabs)
Hard tabs

86-86: Column: 1 (MD010, no-hard-tabs)
Hard tabs

87-87: Column: 1 (MD010, no-hard-tabs)
Hard tabs

88-88: Column: 1 (MD010, no-hard-tabs)
Hard tabs

101-101: Column: 1 (MD010, no-hard-tabs)
Hard tabs

102-102: Column: 1 (MD010, no-hard-tabs)
Hard tabs

103-103: Column: 1 (MD010, no-hard-tabs)
Hard tabs

104-104: Column: 1 (MD010, no-hard-tabs)
Hard tabs

32-32: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

95-95: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

docs/api/middleware/encryptcookie.md

7-7: Expected: 0 or 2; Actual: 1 (MD009, no-trailing-spaces)
Trailing spaces

77-77: Column: 1 (MD010, no-hard-tabs)
Hard tabs

78-78: Column: 1 (MD010, no-hard-tabs)
Hard tabs

79-79: Column: 1 (MD010, no-hard-tabs)
Hard tabs

80-80: Column: 1 (MD010, no-hard-tabs)
Hard tabs

81-81: Column: 1 (MD010, no-hard-tabs)
Hard tabs

92-92: Column: 1 (MD010, no-hard-tabs)
Hard tabs

93-93: Column: 1 (MD010, no-hard-tabs)
Hard tabs

96-96: Column: 1 (MD010, no-hard-tabs)
Hard tabs

97-97: Column: 1 (MD010, no-hard-tabs)
Hard tabs

98-98: Column: 1 (MD010, no-hard-tabs)
Hard tabs

99-99: Column: 1 (MD010, no-hard-tabs)
Hard tabs

85-85: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

docs/guide/hooks.md

60-60: Column: 1 (MD010, no-hard-tabs)
Hard tabs

62-62: Column: 1 (MD010, no-hard-tabs)
Hard tabs

66-66: Column: 1 (MD010, no-hard-tabs)
Hard tabs

68-68: Column: 1 (MD010, no-hard-tabs)
Hard tabs

69-69: Column: 1 (MD010, no-hard-tabs)
Hard tabs

70-70: Column: 1 (MD010, no-hard-tabs)
Hard tabs

72-72: Column: 1 (MD010, no-hard-tabs)
Hard tabs

73-73: Column: 1 (MD010, no-hard-tabs)
Hard tabs

75-75: Column: 1 (MD010, no-hard-tabs)
Hard tabs

76-76: Column: 1 (MD010, no-hard-tabs)
Hard tabs

78-78: Column: 1 (MD010, no-hard-tabs)
Hard tabs

79-79: Column: 1 (MD010, no-hard-tabs)
Hard tabs

81-81: Column: 1 (MD010, no-hard-tabs)
Hard tabs

82-82: Column: 1 (MD010, no-hard-tabs)
Hard tabs

84-84: Column: 1 (MD010, no-hard-tabs)
Hard tabs

85-85: Column: 1 (MD010, no-hard-tabs)
Hard tabs

86-86: Column: 1 (MD010, no-hard-tabs)
Hard tabs

88-88: Column: 1 (MD010, no-hard-tabs)
Hard tabs

89-89: Column: 1 (MD010, no-hard-tabs)
Hard tabs

90-90: Column: 1 (MD010, no-hard-tabs)
Hard tabs

92-92: Column: 1 (MD010, no-hard-tabs)
Hard tabs

140-140: Column: 1 (MD010, no-hard-tabs)
Hard tabs

187-187: Column: 1 (MD010, no-hard-tabs)
Hard tabs

189-189: Column: 1 (MD010, no-hard-tabs)
Hard tabs

193-193: Column: 1 (MD010, no-hard-tabs)
Hard tabs

194-194: Column: 1 (MD010, no-hard-tabs)
Hard tabs

196-196: Column: 1 (MD010, no-hard-tabs)
Hard tabs

197-197: Column: 1 (MD010, no-hard-tabs)
Hard tabs

199-199: Column: 1 (MD010, no-hard-tabs)
Hard tabs

200-200: Column: 1 (MD010, no-hard-tabs)
Hard tabs

201-201: Column: 1 (MD010, no-hard-tabs)
Hard tabs

203-203: Column: 1 (MD010, no-hard-tabs)
Hard tabs

204-204: Column: 1 (MD010, no-hard-tabs)
Hard tabs

206-206: Column: 1 (MD010, no-hard-tabs)
Hard tabs

216-216: Expected: 1; Actual: 2 (MD012, no-multiple-blanks)
Multiple consecutive blank lines

20-20: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

21-21: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

98-98: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

11-11: null (MD032, blanks-around-lists)
Lists should be surrounded by blank lines

do 6D40 cs/api/middleware/keyauth.md

21-21: Column: 1 (MD010, no-hard-tabs)
Hard tabs

22-22: Column: 1 (MD010, no-hard-tabs)
Hard tabs

23-23: Column: 1 (MD010, no-hard-tabs)
Hard tabs

24-24: Column: 1 (MD010, no-hard-tabs)
Hard tabs

28-28: Column: 1 (MD010, no-hard-tabs)
Hard tabs

32-32: Column: 1 (MD010, no-hard-tabs)
Hard tabs

33-33: Column: 1 (MD010, no-hard-tabs)
Hard tabs

35-35: Column: 1 (MD010, no-hard-tabs)
Hard tabs

36-36: Column: 1 (MD010, no-hard-tabs)
Hard tabs

37-37: Column: 1 (MD010, no-hard-tabs)
Hard tabs

38-38: Column: 1 (MD010, no-hard-tabs)
Hard tabs

42-42: Column: 1 (MD010, no-hard-tabs)
Hard tabs

44-44: Column: 1 (MD010, no-hard-tabs)
Hard tabs

45-45: Column: 1 (MD010, no-hard-tabs)
Hard tabs

46-46: Column: 1 (MD010, no-hard-tabs)
Hard tabs

47-47: Column: 1 (MD010, no-hard-tabs)
Hard tabs

48-48: Column: 1 (MD010, no-hard-tabs)
Hard tabs

50-50: Column: 1 (MD010, no-hard-tabs)
Hard tabs

51-51: Column: 1 (MD010, no-hard-tabs)
Hard tabs

52-52: Column: 1 (MD010, no-hard-tabs)
Hard tabs

54-54: Column: 1 (MD010, no-hard-tabs)
Hard tabs

83-83: Column: 1 (MD010, no-hard-tabs)
Hard tabs

84-84: Column: 1 (MD010, no-hard-tabs)
Hard tabs

85-85: Column: 1 (MD010, no-hard-tabs)
Hard tabs

86-86: Column: 1 (MD010, no-hard-tabs)
Hard tabs

87-87: Column: 1 (MD010, no-hard-tabs)
Hard tabs

88-88: Column: 1 (MD010, no-hard-tabs)
Hard tabs

92-92: Column: 1 (MD010, no-hard-tabs)
Hard tabs

93-93: Column: 1 (MD010, no-hard-tabs)
Hard tabs

94-94: Column: 1 (MD010, no-hard-tabs)
Hard tabs

95-95: Column: 1 (MD010, no-hard-tabs)
Hard tabs

96-96: Column: 1 (MD010, no-hard-tabs)
Hard tabs

100-100: Column: 1 (MD010, no-hard-tabs)
Hard tabs

101-101: Column: 1 (MD010, no-hard-tabs)
Hard tabs

103-103: Column: 1 (MD010, no-hard-tabs)
Hard tabs

104-104: Column: 1 (MD010, no-hard-tabs)
Hard tabs

105-105: Column: 1 (MD010, no-hard-tabs)
Hard tabs

106-106: Column: 1 (MD010, no-hard-tabs)
Hard tabs

110-110: Column: 1 (MD010, no-hard-tabs)
Hard tabs

112-112: Column: 1 (MD010, no-hard-tabs)
Hard tabs

113-113: Column: 1 (MD010, no-hard-tabs)
Hard tabs

114-114: Column: 1 (MD010, no-hard-tabs)
Hard tabs

115-115: Column: 1 (MD010, no-hard-tabs)
Hard tabs

116-116: Column: 1 (MD010, no-hard-tabs)
Hard tabs

117-117: Column: 1 (MD010, no-hard-tabs)
Hard tabs

121-121: Column: 1 (MD010, no-hard-tabs)
Hard tabs

123-123: Column: 1 (MD010, no-hard-tabs)
Hard tabs

124-124: Column: 1 (MD010, no-hard-tabs)
Hard tabs

125-125: Column: 1 (MD010, no-hard-tabs)
Hard tabs

126-126: Column: 1 (MD010, no-hard-tabs)
Hard tabs

127-127: Column: 1 (MD010, no-hard-tabs)
Hard tabs

129-129: Column: 1 (MD010, no-hard-tabs)
Hard tabs

130-130: Column: 1 (MD010, no-hard-tabs)
Hard tabs

131-131: Column: 1 (MD010, no-hard-tabs)
Hard tabs

132-132: Column: 1 (MD010, no-hard-tabs)
Hard tabs

133-133: Column: 1 (MD010, no-hard-tabs)
Hard tabs

134-134: Column: 1 (MD010, no-hard-tabs)
Hard tabs

135-135: Column: 1 (MD010, no-hard-tabs)
Hard tabs

136-136: Column: 1 (MD010, no-hard-tabs)
Hard tabs

137-137: Column: 1 (MD010, no-hard-tabs)
Hard tabs

139-139: Column: 1 (MD010, no-hard-tabs)
Hard tabs

165-165: Column: 1 (MD010, no-hard-tabs)
Hard tabs

166-166: Column: 1 (MD010, no-hard-tabs)
Hard tabs

167-167: Column: 1 (MD010, no-hard-tabs)
Hard tabs

168-168: Column: 1 (MD010, no-hard-tabs)
Hard tabs

176-176: Column: 1 (MD010, no-hard-tabs)
Hard tabs

178-178: Column: 1 (MD010, no-hard-tabs)
Hard tabs

179-179: Column: 1 (MD010, no-hard-tabs)
Hard tabs

180-180: Column: 1 (MD010, no-hard-tabs)
Hard tabs

181-181: Column: 1 (MD010, no-hard-tabs)
Hard tabs

183-183: Column: 1 (MD010, no-hard-tabs)
Hard tabs

184-184: Column: 1 (MD010, no-hard-tabs)
Hard tabs

185-185: Column: 1 (MD010, no-hard-tabs)
Hard tabs

186-186: Column: 1 (MD010, no-hard-tabs)
Hard tabs

187-187: Column: 1 (MD010, no-hard-tabs)
Hard tabs

188-188: Column: 1 (MD010, no-hard-tabs)
Hard tabs

190-190: Column: 1 (MD010, no-hard-tabs)
Hard tabs

191-191: Column: 1 (MD010, no-hard-tabs)
Hard tabs

192-192: Column: 1 (MD010, no-hard-tabs)
Hard tabs

194-194: Column: 1 (MD010, no-hard-tabs)
Hard tabs

195-195: Column: 1 (MD010, no-hard-tabs)
Hard tabs

196-196: Column: 1 (MD010, no-hard-tabs)
Hard tabs

198-198: Column: 1 (MD010, no-hard-tabs)
Hard tabs

230-230: Column: 1 (MD010, no-hard-tabs)
Hard tabs

231-231: Column: 1 (MD010, no-hard-tabs)
Hard tabs

232-232: Column: 1 (MD010, no-hard-tabs)
Hard tabs

233-233: Column: 1 (MD010, no-hard-tabs)
Hard tabs

234-234: Column: 1 (MD010, no-hard-tabs)
Hard tabs

235-235: Column: 1 (MD010, no-hard-tabs)
Hard tabs

236-236: Column: 1 (MD010, no-hard-tabs)
Hard tabs

237-237: Column: 1 (MD010, no-hard-tabs)
Hard tabs

238-238: Column: 1 (MD010, no-hard-tabs)
Hard tabs

239-239: Column: 1 (MD010, no-hard-tabs)
Hard tabs

240-240: Column: 1 (MD010, no-hard-tabs)
Hard tabs

241-241: Column: 1 (MD010, no-hard-tabs)
Hard tabs

74-74: Expected: 1; Actual: 2 (MD012, no-multiple-blanks)
Multiple consecutive blank lines

docs/api/middleware/logger.md

9-9: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

13-13: Expected: 1; Actual: 0; Above (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

109-109: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

123-123: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

10-10: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

12-12: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

110-110: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

124-124: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

100-100: Expected: 4; Actual: 9; Too many cells, extra data will be missing (MD056, table-column-count)
Table column count

docs/guide/routing.md

271-271: Expected: 1; Actual: 2 (MD012, no-multiple-blanks)
Multiple consecutive blank lines

144-144: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

182-182: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

187-187: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

200-200: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

205-205: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

22-22: null (MD036, no-emphasis-as-heading)
Emphasis used instead of a heading

58-58: null (MD036, no-emphasis-as-heading)
Emphasis used instead of a heading

167-167: null (MD036, no-emphasis-as-heading)
Emphasis used instead of a heading

227-227: null (MD036, no-emphasis-as-heading)
Emphasis used instead of a heading

247-247: null (MD036, no-emphasis-as-heading)
Emphasis used instead of a heading

docs/api/client.md

26-26: Column: 1 (MD010, no-hard-tabs)
Hard tabs

27-27: Column: 1 (MD010, no-hard-tabs)
Hard tabs

28-28: Column: 1 (MD010, no-hard-tabs)
Hard tabs

29-29: Column: 1 (MD010, no-hard-tabs)
Hard tabs

30-30: Column: 1 (MD010, no-hard-tabs)
Hard tabs

31-31: Column: 1 (MD010, no-hard-tabs)
Hard tabs

32-32: Column: 1 (MD010, no-hard-tabs)
Hard tabs

34-34: Column: 1 (MD010, no-hard-tabs)
Hard tabs

35-35: Column: 1 (MD010, no-hard-tabs)
Hard tabs

36-36: Column: 1 (MD010, no-hard-tabs)
Hard tabs

37-37: Column: 1 (MD010, no-hard-tabs)
Hard tabs

38-38: Column: 1 (MD010, no-hard-tabs)
Hard tabs

39-39: Column: 1 (MD010, no-hard-tabs)
Hard tabs

40-40: Column: 1 (MD010, no-hard-tabs)
Hard tabs

42-42: Column: 1 (MD010, no-hard-tabs)
Hard tabs

47-47: Column: 1 (MD010, no-hard-tabs)
Hard tabs

48-48: Column: 1 (MD010, no-hard-tabs)
Hard tabs

49-49: Column: 1 (MD010, no-hard-tabs)
Hard tabs

50-50: Column: 1 (MD010, no-hard-tabs)
Hard tabs

51-51: Column: 1 (MD010, no-hard-tabs)
Hard tabs

52-52: Column: 1 (MD010, no-hard-tabs)
Hard tabs

53-53: Column: 1 (MD010, no-hard-tabs)
Hard tabs

54-54: Column: 1 (MD010, no-hard-tabs)
Hard tabs

57-57: Column: 1 (MD010, no-hard-tabs)
Hard tabs

62-62: Expected: 1; Actual: 2 (MD012, no-multiple-blanks)
Multiple consecutive blank lines

63-63: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

23-23: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

59-59: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

572-572: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

docs/api/app.md

148-148: Column: 1 (MD010, no-hard-tabs)
Hard tabs

149-149: Column: 1 (MD010, no-hard-tabs)
Hard tabs

150-150: Column: 1 (MD010, no-hard-tabs)
Hard tabs

151-151: Column: 1 (MD010, no-hard-tabs)
Hard tabs

153-153: Column: 1 (MD010, no-hard-tabs)
Hard tabs

154-154: Column: 1 (MD010, no-hard-tabs)
Hard tabs

155-155: Column: 1 (MD010, no-hard-tabs)
Hard tabs

157-157: Column: 1 (MD010, no-hard-tabs)
Hard tabs

158-158: Column: 1 (MD010, no-hard-tabs)
Hard tabs

159-159: Column: 1 (MD010, no-hard-tabs)
Hard tabs

160-160: Column: 1 (MD010, no-hard-tabs)
Hard tabs

428-428: Column: 1 (MD010, no-hard-tabs)
Hard tabs

431-431: Column: 1 (MD010, no-hard-tabs)
Hard tabs

456-456: Column: 1 (MD010, no-hard-tabs)
Hard tabs

457-457: Column: 1 (MD010, no-hard-tabs)
Hard tabs

458-458: Column: 1 (MD010, no-hard-tabs)
Hard tabs

459-459: Column: 1 (MD010, no-hard-tabs)
Hard tabs

460-460: Column: 1 (MD010, no-hard-tabs)
Hard tabs

461-461: Column: 1 (MD010, no-hard-tabs)
Hard tabs

568-568: Column: 1 (MD010, no-hard-tabs)
Hard tabs

569-569: Column: 1 (MD010, no-hard-tabs)
Hard tabs

570-570: Column: 1 (MD010, no-hard-tabs)
Hard tabs

571-571: Column: 1 (MD010, no-hard-tabs)
Hard tabs

572-572: Column: 1 (MD010, no-hard-tabs)
Hard tabs

573-573: Column: 1 (MD010, no-hard-tabs)
Hard tabs

593-593: Column: 1 (MD010, no-hard-tabs)
Hard tabs

594-594: Column: 1 (MD010, no-hard-tabs)
Hard tabs

595-595: Column: 1 (MD010, no-hard-tabs)
Hard tabs

596-596: Column: 1 (MD010, no-hard-tabs)
Hard tabs

597-597: Column: 1 (MD010, no-hard-tabs)
Hard tabs

598-598: Column: 1 (MD010, no-hard-tabs)
Hard tabs

454-454: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

657-657: null (MD047, single-trailing-newline)
Files should end with a single newline character

docs/api/middleware/cors.md

186-186: Expected: 0 or 2; Actual: 1 (MD009, no-trailing-spaces)
Trailing spaces

89-89: Column: 1 (MD010, no-hard-tabs)
Hard tabs

128-128: Column: 1 (MD010, no-hard-tabs)
Hard tabs

129-129: Column: 1 (MD010, no-hard-tabs)
Hard tabs

130-130: Column: 1 (MD010, no-hard-tabs)
Hard tabs

131-131: Column: 1 (MD010, no-hard-tabs)
Hard tabs

132-132: Column: 1 (MD010, no-hard-tabs)
Hard tabs

133-133: Column: 1 (MD010, no-hard-tabs)
Hard tabs

134-134: Column: 1 (MD010, no-hard-tabs)
Hard tabs

135-135: Column: 1 (MD010, no-hard-tabs)
Hard tabs

136-136: Column: 1 (MD010, no-hard-tabs)
Hard tabs

137-137: Column: 1 (MD010, no-hard-tabs)
Hard tabs

138-138: Column: 1 (MD010, no-hard-tabs)
Hard tabs

139-139: Column: 1 (MD010, no-hard-tabs)
Hard tabs

140-140: Column: 1 (MD010, no-hard-tabs)
Hard tabs

141-141: Column: 1 (MD010, no-hard-tabs)
Hard tabs

142-142: Column: 1 (MD010, no-hard-tabs)
Hard tabs

160-160: null (MD025, single-title, single-h1)
Multiple top-level headings in the same document

107-107: null (MD040, fenced-code-language)
Fenced code blocks should have a language specified

214-214: null (MD047, single-trailing-newline)
Files should end with a single newline character

docs/api/middleware/csrf.md

131-131: Column: 1 (MD010, no-hard-tabs)
Hard tabs

168-168: Column: 1 (MD010, no-hard-tabs)
Hard tabs

169-169: Column: 1 (MD010, no-hard-tabs)
Hard tabs

170-170: Column: 1 (MD010, no-hard-tabs)
Hard tabs

171-171: Column: 1 (MD010, no-hard-tabs)
Hard tabs

172-172: Column: 1 (MD010, no-hard-tabs)
Hard tabs

173-173: Column: 1 (MD010, no-hard-tabs)
Hard tabs

174-174: Column: 1 (MD010, no-hard-tabs)
Hard tabs

175-175: Column: 1 (MD010, no-hard-tabs)
Hard tabs

176-176: Column: 1 (MD010, no-hard-tabs)
Hard tabs

186-186: Column: 1 (MD010, no-hard-tabs)
Hard tabs

187-187: Column: 1 (MD010, no-hard-tabs)
Hard tabs

188-188: Column: 1 (MD010, no-hard-tabs)
Hard tabs

189-189: Column: 1 (MD010, no-hard-tabs)
Hard tabs

189-189: Column: 15 (MD010, no-hard-tabs)
Hard tabs

190-190: Column: 1 (MD010, no-hard-tabs)
Hard tabs

191-191: Column: 1 (MD010, no-hard-tabs)
Hard tabs

192-192: Column: 1 (MD010, no-hard-tabs)
Hard tabs

193-193: Column: 1 (MD010, no-hard-tabs)
Hard tabs

194-194: Column: 1 (MD010, no-hard-tabs)
Hard tabs

195-195: Column: 1 (MD010, no-hard-tabs)
Hard tabs

196-196: Column: 1 (MD010, no-hard-tabs)
Hard tabs

197-197: Column: 1 (MD010, no-hard-tabs)
Hard tabs

198-198: Column: 1 (MD010, no-hard-tabs)
Hard tabs

231-231: Column: 1 (MD010, no-hard-tabs)
Hard tabs

232-232: Column: 1 (MD010, no-hard-tabs)
Hard tabs

233-233: Column: 1 (MD010, no-hard-tabs)
Hard tabs

234-234: Column: 1 (MD010, no-hard-tabs)
Hard tabs

235-235: Column: 1 (MD010, no-hard-tabs)
Hard tabs

236-236: Column: 1 (MD010, no-hard-tabs)
Hard tabs

237-237: Column: 1 (MD010, no-hard-tabs)
Hard tabs

238-238: Column: 1 (MD010, no-hard-tabs)
Hard tabs

239-239: Column: 1 (MD010, no-hard-tabs)
Hard tabs

240-240: Column: 1 (MD010, no-hard-tabs)
Hard tabs

241-241: Column: 1 (MD010, no-hard-tabs)
Hard tabs

242-242: Column: 1 (MD010, no-hard-tabs)
Hard tabs

243-243: Column: 1 (MD010, no-hard-tabs)
Hard tabs

254-254: Column: 1 (MD010, no-hard-tabs)
Hard tabs

71-71: Expected: 1; Actual: 2 (MD012, no-multiple-blanks)
Multiple consecutive blank lines

docs/api/ctx.md

1201-1201: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1202-1202: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1203-1203: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1204-1204: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1205-1205: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1213-1213: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1214-1214: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1215-1215: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1223-1223: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1224-1224: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1225-1225: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1226-1226: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1234-1234: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1235-1235: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1236-1236: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1244-1244: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1245-1245: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1246-1246: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1247-1247: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1248-1248: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1249-1249: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1298-1298: Column: 1 (MD010, no-hard-tabs)
Hard tabs

1399-1399: Column: 1 (MD010, no-hard-tabs)
Hard tabs

golangci-lint

middleware/monitor/monitor.go

[warning] 88-88: unchecked-type-assertion: type cast result is unchecked in monitPIDCPU.Load().(float64) - type assertion result ignored (revive)

[warning] 89-89: unchecked-type-assertion: type cast result is unchecked in monitPIDRAM.Load().(uint64) - type assertion result ignored (revive)

[warning] 90-90: unchecked-type-assertion: type cast result is unchecked in monitPIDConns.Load().(int) - type assertion result ignored (revive)

[warning] 92-92: unchecked-type-assertion: type cast result is unchecked in monitOSCPU.Load().(float64) - type assertion result ignored (revive)

middleware/adaptor/adaptor_test.go

56-56: shadow: declaration of "err" shadows declaration at line 36 (govet)

middleware/session/session_test.go

534-534: assigned to originalSessionUUIDString, but reassigned without using the value (wastedassign)

600-600: assigned to originalSessionUUIDString, but reassigned without using the value (wastedassign)

app.go

26-26: import 'github.com/gofiber/fiber/v2/log' is not allowed from list 'Main' (depguard)

27-27: import 'github.com/gofiber/fiber/v2/utils' is not allowed from list 'Main' (depguard)

29-29: import 'github.com/valyala/fasthttp' is not allowed from list 'Main' (depguard)

936-936: shadow: declaration of "err" shadows declaration at line 927 (govet)

app_test.go

1521-1521: shadow: declaration of "err" shadows declaration at line 1518 (govet)

1557-1557: shadow: declaration of "err" shadows declaration at line 1554 (govet)

ctx.go

26-26: import 'github.com/gofiber/fiber/v2/internal/schema' is not allowed from list 'Main' (depguard)

27-27: import 'github.com/gofiber/fiber/v2/utils' is not allowed from list 'Main' (depguard)

776-776: assigned to i, but reassigned without using the value (wastedassign)

826-826: assigned to i, but reassigned without using the value (wastedassign)

ctx_test.go

2754-2754: shadow: declaration of "err" shadows declaration at line 2747 (govet)

4075-4075: shadow: declaration of "err" shadows declaration at line 4072 (govet)

5368-5368: shadow: declaration of "err" shadows declaration at line 5362 (govet)

LanguageTool

docs/api/middleware/healthcheck.md

[uncategorized] ~21-~21: Loose punctuation mark. (UNLIKELY_OPENING_PUNCTUATION)
Context: ...to true. - 503 Service Unavailable: Returned when the checker function eval...

docs/api/middleware/encryptcookie.md

[grammar] ~58-~58: Did you mean the verb “keeps”? For a parallel structure in formal text, use “it keeps”, because ‘random’ is an adjective. (PRP_IS_JJ_AND_VB)
Context: ...e values, so make sure it is random and keep it secret. You can run `openssl rand -b...

[uncategorized] ~69-~69: A determiner appears to be missing. Consider inserting it. (AI_EN_LECTOR_MISSING_DETERMINER)
Context: ...y to encode & decode cookies. Required. Key length should be 32 characters. | (No d...

docs/guide/hooks.md

[grammar] ~10-~10: The singular determiner ‘this’ may not agree with the plural noun ‘hooks’. Did you mean “these”? (THIS_NNS)
Context: ... to run some methods. Here is a list of this hooks: - OnRoute - [OnName]...

[uncategorized] ~35-~35: A comma may be missing after the conjunctive/linking adverb ‘Also’. (SENT_START_CONJUNCTIVE_LINKING_ADVERB_COMMA)
Context: ... functions on each route registeration. Also you can get route properties by **route...

[uncategorized] ~43-~43: A comma may be missing after the conjunctive/linking adverb ‘Also’. (SENT_START_CONJUNCTIVE_LINKING_ADVERB_COMMA)
Context: ...te user functions on each route naming. Also you can get route properties by **route...

[uncategorized] ~104-~104: A comma may be missing after the conjunctive/linking adverb ‘Also’. (SENT_START_CONJUNCTIVE_LINKING_ADVERB_COMMA)
Context: ... functions on each group registeration. Also you can get group properties by **group...

[uncategorized] ~112-~112: A comma may be missing after the conjunctive/linking adverb ‘Also’. (SENT_START_CONJUNCTIVE_LINKING_ADVERB_COMMA)
Context: ...te user functions on each group naming. Also you can get group properties by **group...

9E88
[uncategorized] ~174-~174: You might be missing the article “a” here. (AI_EN_LECTOR_MISSING_DETERMINER_A)
Context: ... process. The mount event is fired when sub-app is mounted on a parent app. The par...

[uncategorized] ~218-~218: Use a comma before ‘and’ if it connects two independent clauses (unless they are closely connected and short). (COMMA_COMPOUND_SENTENCE)
Context: ...f you use one of these routes on sub app and you mount it; paths of routes and group...

docs/api/middleware/keyauth.md

[uncategorized] ~7-~7: This expression is usually spelled with a hyphen. (BASED_HYPHEN)
Context: ...Keyauth Key auth middleware provides a key based authentication. ## Signatures ```go f...

[uncategorized] ~77-~77: The abbreviation “e.g.” (= for example) requires two periods. (E_G)
Context: ...of keyauth and apply a filter function (eg. authFilter) like so ```go package ma...

docs/api/middleware/logger.md

[style] ~101-~101: In American English, abbreviations like “etc.” require a period. (ETC_PERIOD)
Context: ...America/New_York" and "Asia/Chongqing", etc ...

docs/guide/routing.md

[uncategorized] ~41-~41: The official spelling of this programming framework is “Express.js”. (NODE_JS)
Context: ...tring("random.txt") }) ``` As with the expressJs framework, the order of the route decla...

[style] ~93-~93: This phrasing can be overused. Try elevating your writing with a more formal alternative. (IF_YOU_WANT)
Context: ...value, so you can use them in the route if you want, like in the custom methods of the [goo...

[uncategorized] ~93-~93: Use a comma before “and” if it connects two independent clauses (unless they are closely connected and short). (COMMA_COMPOUND_SENTENCE_2)
Context: ...backticks to make sure it is unambiguous and the escape character doesn't interfere ...

[formatting] ~142-~142: If the ‘because’ clause is essential to the meaning, do not use a comma before the clause. (COMMA_BEFORE_BECAUSE)
Context: ...e possibility of the regular expressions, because they are quite slow. The possibilities ...

[style] ~204-~204: The contraction ‘there’re’ is uncommon in written English. (THERE_RE_CONTRACTION_UNCOMMON)
Context: ...regex query when to register routes. So there're no performance overhead for regex const...

[grammar] ~204-~204: Possible agreement error. Did you mean “overheads”? (THERE_RE_MANY)
Context: ...ster routes. So there're no performance overhead for regex constraint. ```go app.Get(`/:...

[style] ~245-~245: Consider shortening or rephrasing this to strengthen your wording. (MAKE_CHANGES)
Context: ...dleware Functions that are designed to make changes to the request or response are called **mi...

docs/api/client.md

[misspelling] ~10-~10: Use “an” instead of ‘a’ if the following word starts with a vowel sound, e.g. ‘an article’, ‘an hour’. (EN_A_VS_AN)
Context: ...osition: 5 --- ## Start request Start a http request with http method and url. ...

[style] ~64-~64: The phrase ‘lots of’ might be wordy and overused. Consider using an alternative. (A_LOT_OF)
Context: ...p/blob/master/client.go#L603) which has lots of convenient helper methods such as dedic...

[uncategorized] ~318-~318: Possible missing article found. (AI_HYDRA_LEO_MISSING_A)
Context: ... ### MultipartForm MultipartForm sends multipart form request by setting the Content-Typ...

[uncategorized] ~429-~429: Possible missing article found. (AI_HYDRA_LEO_MISSING_AN)
Context: ... to be used again after one request. If agent is reusable, then it should be released...

docs/api/app.md

[uncategorized] ~235-~235: This verb may not be in the correct form. Consider using a different form for this context. (AI_EN_LECTOR_REPLACEMENT_VERB_FORM)
Context: ...rst closing all open listeners and then waits indefinitely for all connections to ret...

[uncategorized] ~239-~239: Possible missing comma found. (AI_HYDRA_LEO_MISSING_COMMA)
Context: ...es. ShutdownWithContext shuts down the server including by force if the context's dea...

[grammar] ~653-~653: Did you mean “are” or “were”? (SENT_START_NNS_IS)
Context: ...=> Hello, World! } ``` ## Hooks Hooks is a method to return [hooks](../guide/hoo...

docs/api/middleware/cors.md

[style] ~120-~120: Consider shortening this phrase to just ‘whether’, unless you mean ‘regardless of whether’. (WHETHER)
Context: ... | AllowCredentials indicates whether or not the response to the request can be expo...

[style] ~120-~120: Consider shortening this phrase to just ‘whether’, unless you mean ‘regardless of whether’. (WHETHER)
Context: ... to a preflight request, this indicates whether or not the actual request can be made using cr...

docs/api/middleware/csrf.md

[uncategorized] ~63-~63: Possible missing comma found. (AI_HYDRA_LEO_MISSING_COMMA)
Context: ..., it can't force a user to post to your application since that request won't come from your...

[uncategorized] ~216-~216: Loose punctuation mark. (UNLIKELY_OPENING_PUNCTUATION)
Context: ...d to Error Handler - ErrTokenNotFound: Indicates that the CSRF token was not f...

[uncategorized] ~217-~217: Loose punctuation mark. (UNLIKELY_OPENING_PUNCTUATION)
Context: ...token was not found. - ErrTokenInvalid: Indicates that the CSRF token is invali...

[uncategorized] ~218-~218: Loose punctuation mark. (UNLIKELY_OPENING_PUNCTUATION)
Context: ... CSRF token is invalid. - ErrNoReferer: Indicates that the referer was not supp...

[uncategorized] ~219-~219: Loose punctuation mark. (UNLIKELY_OPENING_PUNCTUATION)
Context: ...erer was not supplied. - ErrBadReferer: Indicates that the referer is invalid. ...

docs/api/ctx.md

[uncategorized] ~242-~242: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...aw()) // []byte("user=john") }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~262-~262: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...dy()) // []byte("user=john") }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~316-~316: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...lhost:3000/?name=john&pass=doe" ``` > _Returned value is only valid within the handler....

[style] ~373-~373: Consider a shorter alternative to avoid wordiness. (IN_ORDER_TO_PREMIUM)
Context: ... information from a ClientHello message in order to guide application logic in the GetCerti...

[typographical] ~396-~396: Consider adding a comma here. (PLEASE_COMMA)
Context: ...text() *fasthttp.RequestCtx ``` :::info Please read the [Fasthttp Documentation](https...

[uncategorized] ~486-~486: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...y", "doe") // "doe" // ... }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~576-~576: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ... or "" if not exist // .. }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~581-~581: Use a comma before “and” if it connects two independent clauses (unless they are closely connected and short). (COMMA_COMPOUND_SENTENCE_2)
Context: ...icate that the client cache is now stale and the full response should be sent. When...

[uncategorized] ~612-~612: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ..., "john") // "john" // .. }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~623-~623: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...eqHeaders() map[string][]string ``` > _Returned value is only valid within the handler....

[uncategorized] ~647-~647: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ..., "john") // "john" // .. }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~658-~658: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...spHeaders() map[string][]string ``` > _Returned value is only valid within the handler....

[uncategorized] ~704-~704: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...() // "google.com" // ... }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~1051-~1051: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...earch?q=something" // ... }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~1055-~1055: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...e..._](../#zero-allocation) ## Params Method can be used to get the route parameters...

[uncategorized] ~1100-~1100: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...f the first wildcard segment }) ``` > _Returned value is only valid within the handler....

[uncategorized] ~1104-~1104: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ...._](../#zero-allocation) ## ParamsInt Method can be used to get an integer from the ...

[uncategorized] ~1106-~1106: Possible missing comma found. (AI_HYDRA_LEO_MISSING_COMMA)
Context: ...teger from the route parameters. Please note if that parameter is not in the request...

[uncategorized] ~1128-~1128: The preposition ‘to’ seems more likely in this position. (AI_HYDRA_LEO_REPLACE_OF_TO)
Context: ... ... }) ``` This method is equivalent of using atoi with ctx.Params ## Params...

[grammar] ~1191-~1191: Did you mean “are” or “were”? (SENT_START_NNS_IS)
Context: ..." // ... }) ``` ## Queries Queries is a function that returns an object conta...

[uncategorized] ~1277-~1277: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ... "nike") // "nike" // ... }) ``` > _Returned value is only valid within the handler....

[typographical] ~1409-~1409: Consider adding a comma here. (PLEASE_COMMA)
Context: ...t" ``` :::info For more parser settings please look here Config :::...

[uncategorized] ~1503-~1503: Possible missing article found. (AI_HYDRA_LEO_MISSING_A)
Context: ...ects back to refer URL. It redirects to fallback URL if refer header doesn't exists, wit...

[uncategorized] ~1503-~1503: Possible missing article found. (AI_HYDRA_LEO_MISSING_A)
Context: ...er URL. It redirects to fallback URL if refer header doesn't exists, with specified s...

[grammar] ~1503-~1503: The auxiliary verb ‘do’ requires the base form of the verb. (DID_BASEFORM)
Context: ...to fallback URL if refer header doesn't exists, with specified status, a positive inte...

[uncategorized] ~1529-~1529: Did you mean: “By default,”? (BY_DEFAULT_COMMA)
Context: ... data and sends a text/html response. By default Render uses the default [**Go Templat...

[style] ~1529-~1529: To make your writing clearer, consider a more direct alternative. (TAKE_A_LOOK)
Context: ...want to use another View engine, please take a look at our [Template middleware](h...

[grammar] ~1537-~1537: Please check the verb form. (SHE_LIVE)
Context: ....string) error ``` ## Request Request return the [*fasthttp.Request](https://godoc....

[style] ~1537-~1537: Three successive sentences begin with the same word. Consider rewording the sentence or use a thesaurus to find a synonym. (ENGLISH_WORD_REPEAT_BEGINNING_RULE)
Context: ...Request Request return the [*fasthttp.Request](https://godoc.org/github.com/valyala/f...

[grammar] ~1587-~1587: Please check the verb form. (SHE_LIVE)
Context: ...s: shoe,hat" ``` ## Response Response return the [*fasthttp.Response](https://godoc...

[style] ~1587-~1587: Three successive sentences begin with the same word. Consider rewording the sentence or use a thesaurus to find a synonym. (ENGLISH_WORD_REPEAT_BEGINNING_RULE)
Context: ...sponse Response return the [*fasthttp.Response](https://godoc.org/github.com/valyala/f...

[uncategorized] ~1603-~1603: There should be no space here. (EG_SPACE)
Context: ...y be helpful after overriding the path, i. e. an internal redirect. Note that handler...

[uncategorized] ~1657-~1657: Possible missing article found. (AI_HYDRA_LEO_MISSING_THE)
Context: ... return err } } ``` ## SaveFile Method is used to save any multipart file ...

[uncategorized] ~1794-~1794: Possible missing comma found. (AI_HYDRA_LEO_MISSING_COMMA)
Context: ...fo If the file contains an url specific character you have to escape it before passing th...

Additional comments not posted (75)

.github/workflows/linter.yml (2)

7-7: Branch trigger updated to v2.

This change aligns with the project's focus on the v2 branch. Ensure that all necessary CI checks are configured for this branch.

19-19: Updated Go setup action to version 5.

This update is crucial for maintaining compatibility with the latest Go versions and taking advantage of new features and fixes in the setup action.

.github/workflows/test.yml (2)

4-4: Branch trigger updated to v2.

Consistent with other workflow updates, this change focuses the CI triggers on the v2 branch.

28-28: Updated Go setup action to version 5.

This ensures the test workflow uses the latest features and fixes of the Go setup action.

middleware/redirect/redirect.go (1)

33-37: Enhanced redirect handling with query string support.

This addition smartly handles the inclusion of query strings in redirects, which can be crucial for maintaining state or parameters during the redirection process.

.github/workflows/benchmark.yml (2)

4-4: Branch trigger updated to v2.

This change ensures that benchmark tests are triggered for the correct branch, aligning with the project's focus.

24-24: Updated Go setup action to version 5.

This update allows the benchmark tests to utilize the latest Go versions and features.

.github/workflows/codeql-analysis.yml (4)

6-6: Update to trigger on branch v2 is appropriate.

This change aligns with the project's current branching strategy as mentioned in the AI-generated summary.

61-61: Update GitHub CodeQL analyze action to v3.

Consistency in action versions across the workflow is good, but ensure compatibility as previously noted.

47-47: Update GitHub CodeQL autobuild action to v3.

As with the init action, verify compatibility and absence of breaking changes.

39-39: Update GitHub CodeQL action to v3.

Ensure that v3 of the CodeQL action is compatible with the project's requirements and has no breaking changes from v2.

Verification successful

Update GitHub CodeQL action to v3.

The changelog indicates that the primary difference between v2 and v3 of the CodeQL Action is the Node.js version they support, with v3 running on Node.js 20 and v2 on Node.js 16. Functionally, v3 releases are identical to their corresponding v2 releases, ensuring compatibility.

The changelog explicitly states that v3 is compatible with Node.js 20 while continuing to release v2 for Node.js 16.

No breaking changes are indicated between v2 and v3, apart from the Node.js version support.

Changelog Reference:

"Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16."

Action Items:

Update the CodeQL action to v3 in your workflow file.

Ensure your environment supports Node.js 20.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash # Description: Verify compatibility of CodeQL action v3 with project requirements. # Check GitHub's release notes for breaking changes between v2 and v3. echo "Please manually check GitHub's release notes for breaking changes between CodeQL action v2 and v3."

Length of output: 209

Script:

#!/bin/bash # Description: Fetch release notes for GitHub CodeQL action to check for breaking changes between v2 and v3. # Fetch the release notes for the GitHub CodeQL action curl -s https://api.github.com/repos/github/codeql-action/releases | jq -r '.[] | select(.tag_name == "v3" or .tag_name == "v2") | .body'

Length of output: 139

Script:

#!/bin/bash # Description: Fetch all release notes for GitHub CodeQL action to manually check for breaking changes. # Fetch all release notes for the GitHub CodeQL action curl -s https://api.github.com/repos/github/codeql-action/releases | jq -r '.[] | "\(.tag_name): \(.body)"'

Length of output: 108791

Script:

#!/bin/bash # Description: Fetch release notes for GitHub CodeQL action v3 to check for breaking changes. # Fetch the release notes for the GitHub CodeQL action v3 curl -s https://api.github.com/repos/github/codeql-action/releases/tags/v3 | jq -r '.body'

Length of output: 95

Script:

#!/bin/bash # Description: Fetch release notes for all GitHub CodeQL action v3.x.x to check for breaking changes. # Fetch all release notes for the GitHub CodeQL action starting with v3 curl -s https://api.github.com/repos/github/codeql-action/releases | jq -r '.[] | select(.tag_name | startswith("v3")) | "\(.tag_name): \(.body)"'

Length of output: 148

Script:

#!/bin/bash # Description: List all available tags for the GitHub CodeQL action to understand the naming convention and identify the latest version. # Fetch all tags for the GitHub CodeQL action curl -s https://api.github.com/repos/github/codeql-action/tags | jq -r '.[].name'

Length of output: 324

Script:

#!/bin/bash # Description: Fetch release notes for the latest GitHub CodeQL action v3.25.10 to check for breaking changes. # Fetch the release notes for the GitHub CodeQL action v3.25.10 curl -s https://api.github.com/repos/github/codeql-action/releases/tags/v3.25.10 | jq -r '.body'

Length of output: 101

Script:

#!/bin/bash # Description: Fetch the general changelog or release notes for the GitHub CodeQL action to check for breaking changes between v2 and v3. # Fetch the general changelog or release notes from the GitHub CodeQL action repository curl -s https://raw.githubusercontent.com/github/codeql-action/main/CHANGELOG.md

Length of output: 52814

middleware/healthcheck/healthcheck.go (2)

1-1: Introduction of healthcheck package.

Ensure that the new package does not conflict with existing packages and is correctly structured.

28-61: Implementation of health check middleware.

The implementation appears robust and well-structured. However, ensure comprehensive testing, particularly around edge cases such as null checker functions and various cfg.Next conditions.

Would you like me to help in writing these tests or creating a GitHub issue to track this task?

middleware/cors/utils.go (1)

4-4: Review of CORS utility functions.

The utility functions appear to be well-implemented. However, ensure that the normalization and validation logic is thoroughly tested, especially for edge cases involving unusual domain and origin formats.

Would you like me to help in writing these tests or creating a GitHub issue to track this task?

Also applies to: 8-29, 30-61

middleware/requestid/requestid_test.go (1)

58-59: Introduced custom type for ContextKey: Ensure compatibility and correct usage.

A new custom type ContextKey has been introduced for handling request IDs in the context. This change enhances type safety and readability but requires careful integration to ensure it does not break existing functionality.

Also applies to: 66-66

middleware/healthcheck/config.go (1)

1-84: General Review: Healthcheck Configuration

The configuration for the healthcheck middleware is well-defined, with clear defaults and optional customization. The structure is consistent with best practices for middleware configuration in Fiber.

middleware/logger/config.go (1)

31-31: Updated logging format: Review for clarity and impact.

The logging format has been updated to include additional fields such as IP and error messages. This change enhances the detail in logs but may require adjustments in log parsing tools or monitoring setups.

Also applies to: 89-89

middleware/session/store.go (1)

17-19: Good addition of a mutex for session operations

Adding a mutex (mux) to synchronize session operations is a good practice, especially in a multi-threaded environment like web servers. This prevents race conditions and ensures data integrity.

docs/api/middleware/healthcheck.md (1)

32-32: Add blank lines around fenced code blocks

Markdown code blocks should be surrounded by blank lines to ensure proper rendering on all markdown parsers.

+ import ( "github.com/gofiber/fiber/v2" "github.com/gofiber/fiber/v2/middleware/healthcheck" ) + + var ConfigDefault = Config{ LivenessProbe: defaultLivenessProbe, ReadinessProbe: defaultReadinessProbe, LivenessEndpoint: "/livez", ReadinessEndpoint: "/readyz", } +

Also applies to: 95-95

Tools

Markdownlint

32-32: null (MD031, blanks-around-fences)
Fenced code blocks should be surrounded by blank lines

docs/api/middleware/basicauth.md (1)

70-71: Update to use interface{} for context keys enhances flexibility

The change from string to interface{} for ContextUsername and ContextPassword allows for more flexibility in what can be stored in these fields. However, ensure that all type assertions in the middleware handle potential mismatches gracefully.

middleware/idempotency/idempotency.go (2)

15-19: Good use of local keys for tracking cache status

Using local keys to track whether a response was retrieved from or put into the cache is a clear and effective way to manage state within the middleware.

18-19: Consider adding documentation for local keys

While the use of local keys localsKeyIsFromCache and localsKeyWasPutToCache is effective, adding documentation explaining their purpose and usage would enhance maintainability and clarity for other developers.

+ // localsKeyIsFromCache indicates whether the response was retrieved from the cache. + // localsKeyWasPutToCache indicates whether the response was stored in the cache. const ( localsKeyIsFromCache localsKeys = "idempotency_isfromcache" localsKeyWasPutToCache localsKeys = "idempotency_wasputtocache" )

docs/api/middleware/encryptcookie.md (5)

7-11: Documentation clarity on middleware functionality

The note about the middleware encrypting cookie values but not names is clear and important for users to understand the scope of the encryption.

Tools

Markdownlint

7-7: Expected: 0 or 2; Actual: 1 (MD009, no-trailing-spaces)
Trailing spaces

Line range hint 25-47: Ensure consistent use of secret keys in examples

The example uses a hardcoded key, which is practical for simplicity but should include a caution about generating secure keys in production.

- Key: "secret-thirty-2-character-string", + Key: encryptcookie.GenerateKey(), // Ensure to securely manage the key in production environments

58-61: Clarification on key management

The text suggests not to set Key to encryptcookie.GenerateKey() directly in the code to avoid generating a new key on every run, which is crucial for consistent encryption across sessions.

Tools

LanguageTool

[grammar] ~58-~58: Did you mean the verb “keeps”? For a parallel structure in formal text, use “it keeps”, because ‘random’ is an adjective. (PRP_IS_JJ_AND_VB)
Context: ...e values, so make sure it is random and keep it secret. You can run `openssl rand -b...

65-71: Config table clarity and completeness

The configuration table is well-structured, providing clear information about each property. However, consider adding more examples or default values where applicable to enhance understanding.

Tools

LanguageTool

[uncategorized] ~69-~69: A determiner appears to be missing. Consider inserting it. (AI_EN_LECTOR_MISSING_DETERMINER)
Context: ...y to encode & decode cookies. Required. Key length should be 32 characters. | (No d...

85-99: Best practice for middleware order

The guidance on placing the encryptcookie middleware before others that modify cookies is crucial for correct operation. This prevents issues where subsequent middleware might not be able to read the encrypted cookies.

Tools

Markdownlint

92-92: Column: 1 (MD010, no-hard-tabs)
Hard tabs

93-93: Column: 1 (MD010, no-hard-tabs)
Hard tabs

96-96: Column: 1 (MD010, no-hard-tabs)
Hard tabs

97-97: Column: F438 1 (MD010, no-hard-tabs)
Hard tabs

98-98: Column: 1 (MD010, no-hard-tabs)
Hard tabs

99-99: Column: 1 (MD010, no-hard-tabs)
Hard tabs

85-85: Expected: 1; Actual: 0; Below (MD022, blanks-around-headings)
Headings should be surrounded by blank lines

docs/guide/hooks.md (7)

38-38: Clear documentation on OnRoute hook

The OnRoute hook documentation clearly explains its purpose and usage. It's important for users to understand when and how to use this hook effectively.

50-50: Clarification needed on OnName hook

The caution about OnName only working with naming routes and not groups is vital. This prevents confusion and ensures that users implement the hook correctly.

107-107: Explanation of OnGroup hook

The OnGroup hook allows for customization at the group level, which can be particularly useful for larger applications or those requiring modular route management.

119-119: Specific use case for OnGroupName hook

The distinction that OnGroupName only works with naming groups enhances clarity. It's good to have specific hooks for different levels of granularity.

127-127: Utility of OnListen hook

The OnListen hook documentation should clearly state its use cases, such as performing actions right after the server starts listening but before it handles any requests.

161-161: Role of OnFork in concurrent environments

The OnFork hook could be better explained, especially its role in applications that leverage multi-core processing or when the application is forked.

169-169: Clarification on OnShutdown hook

The OnShutdown hook is well-documented. It's crucial for cleanup tasks or gracefully shutting down resources, which is essential for maintaining application integrity.

middleware/logger/logger.go (1)

Line range hint 85-99: Ensure thread safety and performance optimization

The logger implementation uses mutexes and atomic operations to ensure thread safety and performance. However, the use of sync.Pool for managing Data objects is particularly noteworthy as it can significantly reduce GC pressure.

middleware/adaptor/adaptor.go (2)

79-79: Ensure header consistency during adaptations

The adaptation logic correctly copies headers from http.Request to fiber.Ctx. This is crucial for maintaining consistency between different middleware and ensuring that all headers are available in the Fiber context.

132-132: Handling of remote addresses in adaptations

The adaptation logic includes a check for missing ports in the remote address, which is a good detail to ensure robustness. However, the fallback port should be configurable or at least documented.

- r.RemoteAddr = net.JoinHostPort(r.RemoteAddr, "80") + r.RemoteAddr = net.JoinHostPort(r.RemoteAddr, defaultPort) // defaultPort should be configurable

middleware/csrf/config.go (3)

96-96: Use of interface{} for context keys

Using interface{} for the ContextKey allows for greater flexibility in what can be used as a key. This is a good practice as it accommodates various types of keys that users might want to employ.

127-127: Clarification on HandlerContextKey usage

The use of interface{} for the HandlerContextKey is consistent with the flexibility provided for the ContextKey. It's important to document examples of how this can be used effectively.

207-207: Dynamic token extraction based on configuration

The dynamic selection of token extraction method based on KeyLookup is a robust feature that enhances the middleware's flexibility. However, ensure that the error handling for incorrect configurations is user-friendly.

middleware/csrf/csrf.go (1)

133-133: Ensure proper token storage in context.

Storing the CSRF token in the context using a key that could be an interface{} is a flexible approach, but it's essential to ensure that the key is unique to avoid potential clashes with other middleware. Consider documenting recommended practices for key generation.

middleware/redirect/redirect_test.go (1)

47-52: Validate new redirect rules and parameter handling.

The addition of new redirect rules and handling of query parameters appears correct. Ensure that the redirect logic correctly appends or retains query parameters as specified, and consider adding more specific tests to verify this behavior thoroughly.

Also applies to: 113-118

Verification successful

The handling of query parameters in redirects is correctly tested.

The test case "redirect with query params" ensures that query parameters are retained during redirection.

middleware/redirect/redirect_test.go: Test case "redirect with query params" (lines 47-52)

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash # Description: Search for tests specifically checking query parameter retention in redirects. rg --type go 'queryParams' 'middleware/redirect/*_test.go'

Length of output: 128

Script:

#!/bin/bash # Step 1: Find the correct directory structure echo "Directory structure:" find . -type d -name '*redirect*' # Step 2: Search for tests specifically checking query parameter retention in redirects in the correct directory echo "Searching for query parameter tests:" rg --type go 'queryParams' $(find . -type d -name '*redirect*')

Length of output: 277

Script:

#!/bin/bash # Search for all test cases related to redirects in the middleware/redirect directory rg --type go 'redirect' ./middleware/redirect

Length of output: 1610

Script:

#!/bin/bash # Display the contents of the test case related to "redirect with query params" rg -A 10 -B 10 'redirect with query params' ./middleware/redirect/redirect_test.go

Length of output: 743

middleware/logger/tags.go (1)

142-145: Consider simplifying error handling with color configuration in logging.

The addition of color configuration in error logging enhances readability but ensure that the enableColors flag and the ColorScheme configuration are properly documented and validated elsewhere in your configuration setup to avoid runtime errors.

Verification successful

The enableColors flag and ColorScheme configuration are properly documented and validated.

The enableColors flag is defined and used in multiple places within the middleware/logger package, and it is documented in docs/api/middleware/logger.md. The ColorScheme configuration is also defined and used in various files, including app.go and middleware/logger/tags.go, and it is documented in docs/api/fiber.md.

enableColors documentation: docs/api/middleware/logger.md

ColorScheme documentation: docs/api/fiber.md

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash # Description: Verify the presence of `enableColors` flag and `ColorScheme` configuration in the project. # Test: Search for the configuration setup and documentation. Expect: Proper setup and documentation. rg --type py 'enableColors' 'ColorScheme'

Length of output: 91

Script:

#!/bin/bash # Description: Verify the presence of `enableColors` flag and `ColorScheme` configuration in the project. # Test: Search for the configuration setup and documentation. Expect: Proper setup and documentation. rg 'enableColors' --type go rg 'ColorScheme' --type go

Length of output: 1717

Script:

#!/bin/bash # Description: Verify the documentation and validation of `enableColors` and `ColorScheme` configuration in the project. # Test: Search for documentation and validation logic. Expect: Proper documentation and validation. rg 'enableColors' --type go rg 'ColorScheme' --type go rg 'enableColors' --type md rg 'ColorScheme' --type md

Length of output: 3064

middleware/cors/utils_test.go (4)

10-53: Comprehensive test coverage for normalizeOrigin.

This test suite robustly checks various scenarios for the normalizeOrigin function, ensuring that origins are correctly normalized or rejected based on the criteria. Consider adding a few more edge cases if any are missing, such as origins with unusual characters or international domain names.

55-81: Thorough testing of matchScheme.

The test cases cover various scenarios for matching schemes in URLs, ensuring that the function behaves as expected across different cases. It's good practice to also test edge cases where the input might be malformed or unexpected.

83-112: Effective normalization tests in Test_normalizeDomain.

The test cases for normalizeDomain function effectively cover different URL formats. Ensure that the function handles more complex domain structures and punycode if applicable.

114-195: Benchmark and correctness tests for subdomain matching.

The benchmark test for subdomain matching (Benchmark_CORS_SubdomainMatch) and its corresponding correctness test (Test_CORS_SubdomainMatch) are well-written. Ensure that performance metrics are gathered and analyzed to confirm the efficiency of the subdomain matching logic.

middleware/cors/cors.go (4)

100-101: Potential configuration conflict between AllowOrigins and AllowOriginsFunc.

The warning and panic handling for conflicting or insecure configurations of AllowOrigins and AllowOriginsFunc are crucial to prevent misconfigurations that could lead to security vulnerabilities. Ensure that these checks are robust and well-documented.

Also applies to: 107-114

122-145: Comprehensive CORS handling logic with detailed configuration checks.

The CORS middleware setup includes detailed checks and configurations for handling different CORS scenarios. This setup ensures that CORS policies are enforced correctly according to the specified configuration. Ensure that all edge cases are covered, especially in complex configurations involving subdomains and wildcard origins.

Also applies to: 162-244

247-287: Efficient setting of CORS headers.

The function setCORSHeaders efficiently sets various CORS-related headers based on the configuration. It handles different scenarios like credentials and exposed headers correctly. Consider adding more inline comments to explain the logic, especially in complex conditional blocks.

18-21: Security implications of dynamic CORS origin handling need attention.

The introduction of AllowOriginsFunc for dynamic CORS origin evaluation is a powerful feature but can introduce security risks if not properly validated. Ensure thorough testing and consider adding examples in the documentation on how to safely implement this function.

Also applies to: 26-47

Verification successful

Documentation for AllowOriginsFunc includes comprehensive examples and security best practices.

The AllowOriginsFunc is well-documented in docs/api/middleware/cors.md. The documentation covers the function's usage, security considerations, and provides examples. This addresses the concerns raised in the review comment.

docs/api/middleware/cors.md: Contains detailed information about AllowOriginsFunc, including security considerations and usage examples.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash # Description: Verify the documentation and examples for `AllowOriginsFunc`. # Test: Search for the usage and documentation of `AllowOriginsFunc`. Expect: Comprehensive examples and security best practices. rg --type md 'AllowOriginsFunc'

Length of output: 3144

docs/guide/routing.md (1)

148-165: Clarification needed on route constraints and their non-validation role.

The documentation clearly states that constraints are not for validation and that mismatches will lead to a 404 error. This is an important distinction that helps prevent misuse of constraints as validation rules. Consider adding more examples to illustrate common mistakes and correct usage.

middleware/adaptor/adaptor_test.go (3)

39-40: Introduced new type for context key.

This change introduces a new type contextKeyType for context keys, which is a good practice for avoiding conflicts in context value keys.

303-303: Introduced middleware for setting context values.

This function setFiberContextValueMiddleware effectively allows setting arbitrary context values, which enhances flexibility in handling requests.

152-152: Potential issue with context value overwriting.

The TestContextSecondKey is set twice with different values. The second assignment might be an oversight or intentional for the test scenario. It's important to clarify this behavior.

docs/api/client.md (1)

Line range hint 64-64: Consider replacing "lots of" for conciseness.

The phrase "lots of" could be replaced with "many" to avoid wordiness and enhance professionalism in documentation.

- which has lots of convenient helper methods such as dedicated methods for request methods. + which has many convenient helper methods such as dedicated methods for request methods.

docs/api/middleware/cors.md (4)

186-186: Remove trailing space to adhere to Markdown standards.

There's an unnecessary trailing space at the end of line 186.

- The `AllowCredentials` option indicates whether the response to the request can be exposed when the credentials flag is true. If `AllowCredentials` is set to `true`, the middleware adds the header `Access-Control-Allow-Credentials: true` to the response. To prevent security vulnerabilities, `AllowCredentials` cannot be set to `true` if `AllowOrigins` is set to a wildcard (`*`). + The `AllowCredentials` option indicates whether the response to the request can be exposed when the credentials flag is true. If `AllowCredentials` is set to `true`, the middleware adds the header `Access-Control-Allow-Credentials: true` to the response. To prevent security vulnerabilities, `AllowCredentials` cannot be set to `true` if `AllowOrigins` is set to a wildcard (`*`).

Tools

Markdownlint

186-186: Expected: 0 or 2; Actual: 1 (MD009, no-trailing-spaces)
Trailing spaces

89-89: Replace hard tabs with spaces for consistency in Markdown files.

The documentation uses hard tabs, which can lead to inconsistent formatting on different platforms or editors.

- return dbCheckOrigin(db, origin) + return dbCheckOrigin(db, origin) - var ConfigDefault = Config{ - Next: nil, - AllowOriginsFunc: nil, - AllowOrigins: "*", - AllowMethods: strings.Join([]string{ - fiber.MethodGet, - fiber.MethodPost, - fiber.MethodHead, - fiber.MethodPut, - fiber.MethodDelete, - fiber.MethodPatch, - }, ","), - AllowHeaders: "", - AllowCredentials: false, - ExposeHeaders: "", + var ConfigDefault = Config{ + Next: nil, + AllowOriginsFunc: nil, + AllowOrigins: "*", + AllowMethods: strings.Join([]string{ + fiber.MethodGet, + fiber.MethodPost, + fiber.MethodHead, + fiber.MethodPut, + fiber.MethodDelete, + fiber.MethodPatch, + }, ","), + AllowHeaders: "", + AllowCredentials: false, + ExposeHeaders: "",

Also applies to: 128-142

Tools

Markdownlint

89-89: Column: 1 (MD010, no-hard-tabs)
Hard tabs

107-107: Specify language for fenced code block to improve readability.

Markdown best practices suggest specifying a language for code blocks to enable syntax highlighting.

- ``` + ```text panic: [CORS] 'AllowCredentials' is true, but 'AllowOrigins' cannot be set to `"*"`.

<details> <summary>Tools</summary> <details> <summary>Markdownlint</summary><blockquote> 107-107: null (MD040, fenced-code-language) Fenced code blocks should have a language specified </blockquote></details> </details> --- `214-214`: **Ensure files end with a single newline character.** The document should end with a single newline to adhere to POSIX standards and ensure compatibility with Unix-based tools. ```diff 214~ - Remember, the key to secure CORS configuration is specificity and caution. By carefully selecting which origins, methods, and headers are allowed, you can help protect your application from cross-origin attacks. + Remember, the key to secure CORS configuration is specificity and caution. By carefully selecting which origins, methods, and headers are allowed, you can help protect your application from cross-origin attacks. +

Tools

Markdownlint

214-214: null (MD047, single-trailing-newline)
Files should end with a single newline character

middleware/session/session_test.go (1)

36-37: Optimize context management in session tests.

It appears that the removal of extra release and acquire calls is intended to address issues with the -race flag. This change should help in reducing unnecessary context switching and potential race conditions. However, it's crucial to ensure that these changes do not affect the logical flow of tests or introduce any new issues.

Also applies to: 84-85, 191-193, 222-222, 249-251, 336-338, 348-350, 404-406, 496-498, 513-513, 549-551, 615-619, 636-636

docs/api/middleware/csrf.md (2)

155-155: Update to interface{} for Context Keys

Changing the type of ContextKey from string to interface{} is a significant update that increases flexibility in how context keys are utilized within the middleware. This change allows for more complex keys or even using non-string types as keys, which can be beneficial in certain use cases.

162-162: Addition of HandlerContextKey

Introducing HandlerContextKey as an interface{} type is a good practice. It ensures that the CSRF handler can be flexibly stored and retrieved from the context, aligning with the dynamic typing nature of Go contexts. This change should be clearly documented to ensure developers understand its usage and implications.

middleware/csrf/csrf_test.go (4)

91-93: Session Save Operation

The addition of session save operations in the test case is crucial for ensuring that the session state is persisted correctly before making subsequent requests that rely on this state. This change helps in making the tests more reliable by explicitly confirming session persistence.

227-229: Session Save Operation in Token Expiration Test

Similar to the previous comment, ensuring that the session is saved after any modifications is vital for the accuracy of the test, especially in scenarios testing token expiration. This change is necessary for the test to reflect real-world usage accurately.

Line range hint 1001-1034: Benchmark Test for CSRF Middleware

The addition of a benchmark test for the CSRF middleware is a good practice, as it helps in understanding the performance implications of the CSRF checks under load. This is particularly useful for middleware that might be used in high-traffic scenarios.

1055-1059: Benchmark Test for Token Generation

Testing the performance of CSRF token generation is crucial, especially since this operation can be a potential bottleneck. This benchmark will help in identifying performance regressions and optimizations in the token generation process.

app.go (2)

33-33: Version Constant Updated

The version constant has been updated from "2.51.0" to "2.52.5". This change is consistent with the PR's aim to update the project's version, and it aligns with the information provided in the AI-generated summary.

Line range hint 29-29: Prohibited Import Usage

The import github.com/valyala/fasthttp is flagged as not allowed. Given that Fiber is built on top of Fasthttp, this flag might be a false positive, or the project might be transitioning to a different HTTP engine. Further clarification from the project maintainers would be needed.

middleware/cors/cors_test.go (2)

38-39: Ensure proper setting of request headers in CORS tests.

The addition of setting the AccessControlRequestMethod and Origin headers correctly simulates a preflight CORS request, which is necessary for accurately testing the MaxAge behavior with negative values.

53-53: Proper header setup for CORS default configuration tests.

Setting the Origin header and the AccessControlRequestMethod for OPTIONS requests is crucial for accurately testing CORS default behaviors. These changes ensure that the CORS middleware is tested under conditions that closely mimic actual cross-origin requests.

Also applies to: 63-64

docs/api/ctx.md (1)

903-924: Documentation Enhancement Approved

The updated documentation for the Locals method provides clear guidelines on its usage and behavior, especially with respect to resource management which is crucial for avoiding memory leaks and ensuring proper cleanup.

ctx.go (3)

970-973: Updated documentation for Locals method is clear and informative.

The added details about the removal of values and the closing of io.Closer implementations enhance the understanding of resource management within the context lifecycle.

1229-1229: Updated documentation for QueryBool correctly specifies default behavior.

Clarifying that the default return value for an empty or invalid key is false helps prevent errors and is a safer default for boolean operations.

Line range hint 26-26: Consider revising or justifying restricted imports.

Imports from github.com/gofiber/fiber/v2/internal/schema and github.com/gofiber/fiber/v2/utils are flagged as not allowed. If these are essential, consider updating the dependency guard configuration or provide justification for their use.

Also applies to: 27-27

…n session_test.go (gofiber#3043)

test(middleware/session): Remove extra release and aquire ctx calls i…

57ac63e

…n session_test.go

sixcolors requested a review from a team as a code owner June 26, 2024 12:54

sixcolors requested review from gaby, ReneWerner87 and efectn and removed request for a team June 26, 2024 12:54

github-actions bot added the 🧹 Updates label Jun 26, 2024

sixcolors changed the base branch from main to v2 June 26, 2024 12:54

sixcolors added the v2 label Jun 26, 2024

coderabbitai bot reviewed Jun 26, 2024

View reviewed changes

ReneWerner87 approved these changes Jun 26, 2024

View reviewed changes

ReneWerner87 merged commit c7bfb31 into gofiber:v2 Jun 26, 2024
1 check passed

sixcolors deleted the fix-session-test-v2 branch June 27, 2024 02:45

thylong pushed a commit to thylong/fiber that referenced this pull request Dec 11, 2024

test(middleware/session): Remove extra release and aquire ctx calls i…

6f9fa8a

…n session_test.go (gofiber#3043)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

test(middleware/session): Remove extra release and aquire ctx calls in session_test.go #3043

test(middleware/session): Remove extra release and aquire ctx calls in session_test.go #3043

Review failed

Chat

CodeRabbit Commands (invoked as PR comments)

CodeRabbit Configration File (`.coderabbit.yaml`)

Documentation and Community

test(middleware/session): Remove extra release and aquire ctx calls in session_test.go #3043

test(middleware/session): Remove extra release and aquire ctx calls in session_test.go #3043

Conversation

Review failed

Walkthrough

Changes

Poem

Chat

CodeRabbit Commands (invoked as PR comments)

CodeRabbit Configration File (.coderabbit.yaml)

Documentation and Community

Choose a reason for hiding this comment

CodeRabbit Configration File (`.coderabbit.yaml`)