Category Strategy - Code Review

1. You are here:
2. GitLab Direction
3. Product Vision - Create
4. Category Strategy - Code Review

• Code Review
• Introduction and how you can help
• Overview
  • Target Audience
• Where we are Headed
  • What's Next & Why
  • What is Not Planned Right Now
  • Maturity Plan
• Competitive Landscape
• Analyst Landscape
• Top Customer Success/Sales issue(s)
• Top user issue(s)
• Top internal customer issue(s)
• Top Vision Item(s)

Code Review

Stage	Maturity
Create	Loveable

Introduction and how you can help

The Code Review strategy page belongs to the Source Code group of the Create stage, and is maintained by James Ramsay.

This strategy is a work in progress, and everyone can contribute. Please comment and contribute in the linked issues and epics. Sharing your feedback directly on GitLab.com is the best way to contribute to our strategy and vision.

• Issue list
• Epic list

Overview

Code Review is an essential practice of every successful project. It is necessary for maintaining and improving code quality, and is one of the primary avenues of mentorship for software engineers, but it is also time consuming.

GitLab's vision for code review is a place where:

• changes can be discussed,
• developers can be mentored,
• knowledge can be shared, and
• defects identified.

GitLab should make these tasks efficient and easy, so that velocity and code quality both increase.

Target Audience

Code review is used by software engineers and individual contributors of all kinds. Depending on their context, however, the workflow and experience of code review can vary significantly.

• full time contributor to a commercial product where reducing cycle time is very important. The review cycle is very tight and focussed as a consequence of best practices where keeping merge requests small and iterating at a high velocity are objectives. Code review workflows for these users are Complete
• occasional contributor to an open source product where cycle time is typically longer as a consequence that they are not working on the project full time. This results in longer review times. When long review times occur, the participants in the merge request will need to spend more time reacquainting themselves with the change. When there are non-trivial amounts of feedback this can be difficult to understand. Code review workflows for these users are Complete
• scientific projects frequently have a different flow to typical projects, where the development is sporadic, and changes are often reviewed after they have been merged to master. This is a consequence of the high code churn associated with high exploratory work, and having infrequent access to potential reviewers. Post-merge code review workflows are not yet viable in GitLab.

Where we are Headed

The code review process involves at least two roles (author, and reviewer) but may involve many people, who work together to achieve code quality standards and mentor the author. Furthermore, many reviewers are often not Developers. Reviewers may be Developers, UX Designers, Product Managers, Technical Writers, Security Engineers and more.

In support of GitLab's vision for code review, areas of interest and improvement can be organized by the following goals:

• efficiency directly influences velocity within the time span of a single merge request
  • author efficiency considers how a merge request author can create and address code review feedback,
  • reviewer efficiency considers how an individual reviewer can review a code change, leave feedback, and also verify their own feedback has been addressed,
  • team efficiency considers a team can coordinate and communicate responsibilities, progress and status of a merge request, and quickly the entire process can be completed
• best practices influence efficiency of teams and projects over a longer time scale, and can include fostering norms and behaviours that aren't explicitly enforced through the application. Amplifying best practices, great defaults and documentation play a significant role in this.
• love-ability captures the essence that GitLab is enjoyable to use, which may mean that it is fast, invisible and allows you to get your work done. Particularly, GitLab should encourage the best of communication between colleagues and contributors, helping teams celebrate great contributions of all kinds, and express their ideas without misunderstandings. How GitLab communicates with people, will influence how people communicate with each other inside GitLab.
• policy controls that allows code review requirements to be set and enforced, going above and beyond amplifying and encouraging best practice.

What's Next & Why

• In Progress: Progressively load merge request diffs

  The product discovery sprint conducted to kick off File-by-file merge request diffs made it clear that loading the merge request diffs progressively in any way requires significant work.

  Merge requests are used by the majority of GitLab customers, and for these customers it is a critical path in ensuring quality and getting work done. Many large numbers of customers have reported performance problems working with large diffs, or those with lots of discussions. Conversations with customers, and experience says show although it is best practice to have many small merge requests, this is not always possible in situations like refactors, large changes, or pulling in changes from a diverged fork managed by a different company.

  Today the merge request interface loads all diffs and disscussions in a single request, which causes timeouts, poor page performance, and frustration for only moderately large merge requests. Addressing this is the highest priority because the merge request is a critical workflow, other capabilities of GitLab are integrated into and rely on the merge request, and we are obstructed from addressing the most important UX feedback.

• Next: Smarter merge request diffs using merge refs

  Early backend preparation work has been made in support of GitLab CI.

  Code reviews are time consuming, requiring engineers to carefully review and understand the proposed change. The accuracy of the diff is therefore critical.

  Additionally, both Atlassian and GitHub have made their diffs smarter, showing the actual difference between the source and target branch, not the source branch and the merge base of the target branch.

What is Not Planned Right Now

Maturity Plan

This category is currently at the Loveable maturity level (see our definitions of maturity levels).

Competitive Landscape

GitLab competes with both integrated and dedicated code review tools. Because merge requests (which is the code review interface), and more specifically the merge widget, is the single source of truth about a code change and a critical control point in the GitLab workflow, it is important that merge requests and code review in GitLab is excellent. Our primary source of competition and comparison is to dedicated code review tools.

Prospects and new customers, who previously used dedicated code review tools typically have high expectations and accustomed to a high degree of product depth. Given that developers spend a significant portion (majority?) of their in application time in merge requests, limitations are quickly noticed and become a source of frustration.

Integrated code review packaged with source code management:

• Phabricator by Phacility (very mature) (example)
• Gerrit (free, open source) (very mature) (example)
• GitHub
• Bitbucket by Atlassian
• Azure DevOps by Microsoft

Dedicated code review tools:

• Crucible by Atlassian (very mature) (Bitbucket vs Crucible)
• Review Board (example)
• Reviewable (example)

Analyst Landscape

Top Customer Success/Sales issue(s)

The highest priority customer requests are for improved application performance, accuracy and efficiency for reviewing merge request diffs of all sizes, small and extremely large.

• Smarter merge request diffs using merge refs address accuracy problems in some situations, thereby improving efficiency of reviews by showing the expected diff contents.
• File-by-file merge request diffs improves application performance, thus improving reviewer efficiency by reducing the time waiting to view diffs.
• Track unread diffs, files, and discussions improves usability. primarily improves reviewer efficiency by allowing reviews to be performed incrementally over multiple sittings, and better handling the iterative process of leaving feedback and the author proposing improvements.

Other notable requests include:

• Cross-project code review (group merge requests)
• Post-merge code review is of interest to a variety of organizations where changes are merged with a very high velocity (e.g daily) and they desire to review aggregate set of changes semi-regularly.

Top user issue(s)

• Smarter merge request diffs using merge refs
• Increased focus of merge request changes tab will make code review more love-able by reducing distraction, and making use of the navigational affordances of the top of the page which is quickly accessed by mouse and keyboard.

Top internal customer issue(s)

• Suggest and assign reviewers and maintainers will replace the Reviewer Roulette implemented with Danger.

Top Vision Item(s)

Coordination of responsibilities and handoff can be time consuming, particularly for changes spanning backend, frontend, database and perhaps other services. Tools to make requesting a code review, understand the progress of the code review, and hand off from reviewer back to engineer is important.

• Merge request reviewers improves team efficiency by improving hand off between team members, and making it clear the different roles of participation in a merge request.

It is critical the merge request is reliably fast, accurate and efficient, as it is a blocking step in the software development lifecycle. It is important that GitLab smooth and streamline the process, and not become a source of friction or frustration to the adoption of best practice or high velocity.

• File-by-file merge request diffs primarily improves reviewer efficiency be allow faster access to each file, and improved usability for large diffs.
• Track unread diffs, files, and discussions primarily improves reviewer efficiency by allowing reviews to be performed incrementally over multiple sittings, and better handling the iterative process of leaving feedback and the author proposing improvements.

Commits are the critical unit of work in Git, and used well are tremendously valuable. GitLab should be enabling and amplifying best practice behaviours using commits, so that the commit messages and each commit is a valuable asset for years. Great commit messages and meaningful commits allow developers to move quickly, and effectively make use of the entire ecosystem of Git tooling.

• Commit messages as part of code review helps teams adopt best practice commit messages by making them reviewable. Commit messages are part of the distributed nature of Git and should used to maximum extent so that valuable information is portable and easily accessed through local Git tooling.
• Commit by commit code review will teams that perform commit by commit reviews, which are a best practice for some teams.