-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathForbidRawSqlRule.php
More file actions
70 lines (55 loc) · 1.84 KB
/
Copy pathForbidRawSqlRule.php
File metadata and controls
70 lines (55 loc) · 1.84 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
<?php
declare(strict_types=1);
namespace PhpStanMigrationRules\Rules\Laravel;
use PhpParser\Node;
use PhpParser\Node\Expr\StaticCall;
use PhpParser\Node\Identifier;
use PhpParser\Node\Name;
use PHPStan\Analyser\Scope;
use PHPStan\Rules\RuleErrorBuilder;
/**
* @extends LaravelRule<StaticCall>
*/
final class ForbidRawSqlRule extends LaravelRule
{
private const string RULE_IDENTIFIER = 'laravel.schema.rawSqlForbidden';
private const string MESSAGE =
'Forbidden: raw SQL via DB::%s(). '
. 'Why: raw SQL bypasses the schema builder, making migrations harder to review, less portable, and prone to errors. '
. 'Fix: use Laravel schema builder methods instead.';
private const array FORBIDDEN_METHODS = ['statement', 'unprepared'];
public function getNodeType(): string
{
return StaticCall::class;
}
public function processNode(Node $node, Scope $scope): array
{
if (!$this->isLaravelMigration($scope)) {
return [];
}
$methodName = $this->getForbiddenMethodName($node, $scope);
if ($methodName === null) {
return [];
}
return [
RuleErrorBuilder::message(sprintf(self::MESSAGE, $methodName))
->identifier(self::RULE_IDENTIFIER)
->build(),
];
}
private function getForbiddenMethodName(StaticCall $node, Scope $scope): ?string
{
if (!$node->name instanceof Identifier) {
return null;
}
if (!$node->class instanceof Name) {
return null;
}
$resolved = $scope->resolveName($node->class);
if ($resolved !== \Illuminate\Support\Facades\DB::class) {
return null;
}
$name = $node->name->toString();
return in_array($name, self::FORBIDDEN_METHODS, true) ? $name : null;
}
}