如果您有一套自定义的最佳实践或惯例,希望 GitHub 上的 Gemini Code Assist 进行检查,可以将 styleguide.md 文件添加到代码库的 .gemini/ 根文件夹中。GitHub 上 Gemini Code Assist 的企业版用户可以使用 Google Cloud 控制台添加样式指南信息,以便在多个代码库中使用。
在这两种情况下,样式指南都会被视为常规 Markdown 文件,并扩展 GitHub 上的 Gemini Code Assist 使用的标准提示。如需了解如何添加样式指南,请参阅添加配置文件。
标准代码审核模式
如果未指定自定义样式指南,Gemini Code Assist 会重点审核以下主要类别的代码:
- 正确性:确保代码按预期运行并处理极端情况,检查是否存在逻辑错误、竞态条件或不正确的 API 用法。 
- 效率:识别潜在的性能瓶颈或可优化的方面,例如过多的循环、内存泄漏、低效的数据结构、冗余计算、过多的日志记录和低效的字符串操作。 
- 可维护性:评估代码的可读性、模块化程度以及对语言惯用语和最佳实践的遵循情况。针对变量、函数和类的命名不当、缺少注释或文档、代码复杂、代码重复、格式不一致和魔数。 
- 安全性:识别数据处理或输入验证中潜在的漏洞,例如敏感数据的不安全存储、注入攻击、访问权限控制不足、跨站请求伪造 (CSRF) 和不安全直接对象引用 (IDOR)。 
- 其他:在审核拉取请求时,还会考虑其他主题,例如测试、性能、可伸缩性、模块化和可重用性,以及错误日志记录和监控。 
添加配置文件
您可以通过向代码库根目录中的 .gemini/ 文件夹添加受支持的配置文件来修改 Gemini Code Assist 的行为。如果您已将以下文件添加到 .gemini/ 文件夹,Gemini Code Assist 会使用这些文件:
- config.yaml:包含各种可配置的功能(您可以启用或停用),包括使用 glob 模式指定要忽略的文件。
- styleguide.md:一个 Markdown 文件,其中包含一些特定规则,用于指示 Gemini Code Assist 在执行代码审核时遵循这些规则。
 config.yaml 示例
以下代码段是 config.yaml 文件的一个示例。在此示例中,每个属性都设置为 Gemini Code Assist 使用的默认值。您可以使用以下代码段作为模板来创建自己的 config.yaml 文件:
have_fun: false
code_review:
  disable: false
  comment_severity_threshold: MEDIUM
  max_review_comments: -1
  pull_request_opened:
    help: false
    summary: true
    code_review: true
    include_drafts: true
ignore_patterns: []
 config.yaml 个架构
以下代码段是 config.yaml 文件的架构。它定义了所有可能的配置选项及其接受的值:
$schema: "http://json-schema.org/draft-07/schema#"
title: RepoConfig
description: Configuration for Gemini Code Assist on a repository. All fields are optional and have default values.
type: object
properties:
  have_fun:
    type: boolean
    description: Enables fun features such as a poem in the initial pull request summary. Default: false.
  ignore_patterns:
    type: array
    items:
      type: string
    description: A list of glob patterns for files and directories that Gemini Code Assist should ignore. Files matching any pattern in this list will be skipped during interactions. Default: [].
  code_review:
    type: object
    description: Configuration for code reviews. All fields are optional and have default values.
    properties:
      disable:
        type: boolean
        description: Disables Gemini from acting on pull requests. Default: false.
      comment_severity_threshold:
        type: string
        enum:
          - LOW
          - MEDIUM
          - HIGH
          - CRITICAL
        description: The minimum severity of review comments to consider. Default: MEDIUM.
      max_review_comments:
        type: integer
        format: int64
        description: The maximum number of review comments to consider. Use -1 for unlimited. Default: -1.
      pull_request_opened:
        type: object
        description: Configuration for pull request opened events. All fields are optional and have default values.
        properties:
          help:
            type: boolean
            description: Posts a help message on pull request open. Default: false.
          summary:
            type: boolean
            description: Posts a pull request summary on the pull request open. Default: true.
          code_review:
            type: boolean
            description: Posts a code review on pull request open. Default: true.
          include_drafts:
            type: boolean
            description: Enables agent functionality on draft pull requests. Default: true.
 styleguide.md 
styleguide.md 文件没有已定义的架构。相反,它是一种自然语言描述,用于说明您希望 Gemini Code Assist 如何构建其代码审核。以下代码段是 styleguide.md 文件的一个示例:
# Company X Python Style Guide
# Introduction
This style guide outlines the coding conventions for Python code developed at Company X.
It's based on PEP 8, but with some modifications to address specific needs and
preferences within our organization.
# Key Principles
* **Readability:** Code should be easy to understand for all team members.
* **Maintainability:** Code should be easy to modify and extend.
* **Consistency:** Adhering to a consistent style across all projects improves
  collaboration and reduces errors.
* **Performance:** While readability is paramount, code should be efficient.
# Deviations from PEP 8
## Line Length
* **Maximum line length:** 100 characters (instead of PEP 8's 79).
    * Modern screens allow for wider lines, improving code readability in many cases.
    * Many common patterns in our codebase, like long strings or URLs, often exceed 79 characters.
## Indentation
* **Use 4 spaces per indentation level.** (PEP 8 recommendation)
## Imports
* **Group imports:**
    * Standard library imports
    * Related third party imports
    * Local application/library specific imports
* **Absolute imports:** Always use absolute imports for clarity.
* **Import order within groups:**  Sort alphabetically.
## Naming Conventions
* **Variables:** Use lowercase with underscores (snake_case): `user_name`, `total_count`
* **Constants:**  Use uppercase with underscores: `MAX_VALUE`, `DATABASE_NAME`
* **Functions:** Use lowercase with underscores (snake_case): `calculate_total()`, `process_data()`
* **Classes:** Use CapWords (CamelCase): `UserManager`, `PaymentProcessor`
* **Modules:** Use lowercase with underscores (snake_case): `user_utils`, `payment_gateway`
## Docstrings
* **Use triple double quotes (`"""Docstring goes here."""`) for all docstrings.**
* **First line:** Concise summary of the object's purpose.
* **For complex functions/classes:** Include detailed descriptions of parameters, return values,
  attributes, and exceptions.
* **Use Google style docstrings:** This helps with automated documentation generation.
    ```python
    def my_function(param1, param2):
        """Single-line summary.
        More detailed description, if necessary.
        Args:
            param1 (int): The first parameter.
            param2 (str): The second parameter.
        Returns:
            bool: The return value. True for success, False otherwise.
        Raises:
            ValueError: If `param2` is invalid.
        """
        # function body here
    ```
## Type Hints
* **Use type hints:**  Type hints improve code readability and help catch errors early.
* **Follow PEP 484:**  Use the standard type hinting syntax.
## Comments
* **Write clear and concise comments:** Explain the "why" behind the code, not just the "what".
* **Comment sparingly:** Well-written code should be self-documenting where possible.
* **Use complete sentences:** Start comments with a capital letter and use proper punctuation.
## Logging
* **Use a standard logging framework:**  Company X uses the built-in `logging` module.
* **Log at appropriate levels:** DEBUG, INFO, WARNING, ERROR, CRITICAL
* **Provide context:** Include relevant information in log messages to aid debugging.
## Error Handling
* **Use specific exceptions:** Avoid using broad exceptions like `Exception`.
* **Handle exceptions gracefully:** Provide informative error messages and avoid crashing the program.
* **Use `try...except` blocks:**  Isolate code that might raise exceptions.
# Tooling
* **Code formatter:**  [Specify formatter, e.g., Black] - Enforces consistent formatting automatically.
* **Linter:**  [Specify linter, e.g., Flake8, Pylint] - Identifies potential issues and style violations.
# Example
```python
"""Module for user authentication."""
import hashlib
import logging
import os
from companyx.db import user_database
LOGGER = logging.getLogger(__name__)
def hash_password(password: str) -> str:
  """Hashes a password using SHA-256.
  Args:
      password (str): The password to hash.
  Returns:
      str: The hashed password.
  """
  salt = os.urandom(16)
  salted_password = salt + password.encode('utf-8')
  hashed_password = hashlib.sha256(salted_password).hexdigest()
  return f"{salt.hex()}:{hashed_password}"
def authenticate_user(username: str, password: str) -> bool:
  """Authenticates a user against the database.
  Args:
      username (str): The user's username.
      password (str): The user's password.
  Returns:
      bool: True if the user is authenticated, False otherwise.
  """
  try:
      user = user_database.get_user(username)
      if user is None:
          LOGGER.warning("Authentication failed: User not found - %s", username)
          return False
      stored_hash = user.password_hash
      salt, hashed_password = stored_hash.split(':')
      salted_password = bytes.fromhex(salt) + password.encode('utf-8')
      calculated_hash = hashlib.sha256(salted_password).hexdigest()
      if calculated_hash == hashed_password:
          LOGGER.info("User authenticated successfully - %s", username)
          return True
      else:
          LOGGER.warning("Authentication failed: Incorrect password - %s", username)
          return False
  except Exception as e:
      LOGGER.error("An error occurred during authentication: %s", e)
      return False
```
管理多个代码库中的配置文件
如果您在 GitHub 上拥有企业版 Gemini Code Assist,则可以使用 Google Cloud 控制台将一组配置和一个样式指南应用于 Developer Connect 连接中关联的所有代码库。
请注意,如果以这种方式管理的代码库也有自己的 config.yaml 或 styleguide.md,则会发生以下行为:
- 代码库的 - config.yaml设置会覆盖 Google Cloud 控制台设置。
- 该代码库的 - styleguide.md与 Google Cloud 控制台样式指南相结合。
以下步骤展示了如何跨多个代码库控制一组配置和一个样式指南。这些步骤假定您之前已设置企业版。
- 在 Google Cloud 控制台中,前往 Gemini Code Assist 代理和工具页面。 
- 在代理部分中,找到 Code Assist 源代码管理卡片,然后点击高级。 - 系统会打开 Edit Code Assist Source Code Management 窗格。 
- 在连接表格中,点击要应用配置或样式指南的连接的名称。 - 系统会打开相应连接的详情页面。 
- 在设置标签页中,更新您要更改的设置。 
- 在样式指南标签页中,添加您希望与此连接关联的代码库使用的样式指南。 
- 点击保存。