Getting Started

Minimal Setup

Installation:
```
composer require --dev vimeo/psalm
```
Initialize Psalm with default config:
```
vendor/bin/psalm --init
```
This generates a psalm.xml in your project root.

First Run:

vendor/bin/psalm

Analyze specific files:

vendor/bin/psalm src/Controller/UserController.php

Key Configurations:

Edit psalm.xml to define:

<projectFiles>
    <directory name="src" />
    <directory name="app" />
</projectFiles>

Set PHP version:
```
<phpVersion>8.1</phpVersion>
```

First Use Case: Run Psalm in CI/CD pipelines to catch type errors early:

# .github/workflows/psalm.yml
jobs:
  psalm:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
      - run: composer install
      - run: vendor/bin/psalm --no-cache

Implementation Patterns

Daily Workflow

Pre-Commit Hook:

composer require --dev php-parallel-lint/php-parallel-lint
composer require --dev dealerdirect/phpcodesniffer-composer-installer

Add to composer.json:

"scripts": {
  "test": [
    "@phpcs",
    "@psalm"
  ]
}

Create .php-cs-fixer.dist.php and .phpcs.xml for linting.

Incremental Analysis: Use --diff for faster local runs:
```
vendor/bin/psalm --diff
```
Team Integration:
- Use --shepherd to track type coverage in Shepherd.
- Configure psalm.xml to ignore tests:
```
<ignoreFiles>
    <directory name="tests" />
</ignoreFiles>
```

Custom Rules: Extend Psalm with custom rules by creating a Ruleset class:

// src/Rules/NoHardcodedUrlsRule.php
namespace App\Rules;

use Psalm\Plugin\Ruleset\Ruleset;

class NoHardcodedUrlsRule extends Ruleset {
    public function getRules(): array {
        return [
            NoHardcodedUrls::class,
        ];
    }
}

<pluginClass>App\Rules\NoHardcodedUrlsRule</pluginClass>

Fixing Issues: Use psalter to auto-fix common issues:

vendor/bin/psalter --issues=MissingReturnType --dry-run

Gotchas and Tips

Common Pitfalls

False Positives:

Suppress warnings with @psalm-suppress:

/** @psalm-suppress MixedReturnStatement */
function foo() {
    return $this->bar(); // bar() returns mixed
}

Use @var annotations for dynamic types:

/** @var array<int, string> */
$dynamicArray = [];

Performance:
- Cache issues with --no-cache to force a full analysis.
- Use --threads=8 for multi-core systems (adjust based on your machine).
Configuration Quirks:
- Strict Mode: Enable with <strictness>1</strictness> for stricter checks.
- Platform Checks: Use <platform> tags to define global constants:
```
<platform>
    <constant name="APP_ENV" value="local" />
</platform>
```
- Excluded Directories: Ensure vendor/ is excluded:
```
<excludeFiles>
    <directory name="vendor" />
</excludeFiles>
```
Debugging:
- Verbose Output: Use --stats to see analysis details:
```
vendor/bin/psalm --stats
```
- Log Level: Increase verbosity with --log-level=3.
Refactoring Risks:
- Always use --dry-run with psalm-refactor:
```
vendor/bin/psalm-refactor --move "App\Old\*" --into "App\New\" --dry-run
```
- Test refactored code in a staging environment before merging.
Plugin Limitations:
- Custom plugins must implement Psalm\Plugin\Manipulation\Manipulation for psalter.
- Plugins may not handle all edge cases (e.g., complex PHPDoc).

CI/CD Tips:

Cache Psalm’s storage directory between runs:

- uses: actions/cache@v3
  with:
    path: ~/.cache/psalm
    key: ${{ runner.os }}-psalm-${{ hashFiles('**/composer.lock') }}

Fail builds on errors:
```
vendor/bin/psalm || exit 1
```

Type Coverage:
- Aim for 80%+ type coverage (tracked via Shepherd).
- Use @psalm-assert for runtime assertions:
```
/** @psalm-assert string $var */
$var = $this->getString();
```
Legacy Code:
- Gradually enable strictness with <strictness>0</strictness> initially.
- Use @psalm-ignore-all for entire files if needed (last resort).

Edge Cases:

Dynamic Properties: Annotate with @property:

class DynamicClass {
    /** @property string $dynamicProp */
}

Magic Methods: Use @method for __call:

class Proxy {
    /** @method string getData() */
}

Psalm Laravel Package