Continuous Integration

We highly recommend setting up automated tests for your app, so that every change has to pass a defined procedure before it’s accepted into the main branch of your repository. Continuous integration typically includes

  • Linting: check the syntax of source files, e.g. of all php scripts

  • Static analysis: have tools check the types in your app for type soundness, mostly used for php

  • Unit testing: run unit tests for front-end and back-end where individual classes and components are tested in isolation

  • Integration testing: test components when they are combined

You can find a list of available github workflow templates in our nextcloud template repository.



You can validate the info.xml app metadata file of an app with a simple github action:

name: Lint
on: pull_request

    runs-on: ubuntu-latest
    - name: Checkout
      uses: actions/checkout@master
    - name: Download schema
      run: wget
    - name: Lint info.xml
      uses: ChristophWurst/xmllint-action@v1
        xml-file: ./appinfo/info.xml
        xml-schema-file: ./info.xsd


A lint of all php source files can find syntax errors that could crash the application in production. You can find the github actions in our nextcloud template repository. You will also require the following lint script in your composer.json:

  "scripts": {
    "lint": "find . -name \\*.php -not -path './vendor/*' -print0 | xargs -0 -n1 php -l"


We encourage the usage of php-cs linting. You can find some documentation on how to set this up in the nextcloud coding-standard repository as well as the relevant github actions in our nextcloud template repository.

Static analysis

Psalm is a static analysis tool that can check if your app code uses all types correctly, like if classes and methods exist. For the basic setup see the Psalm website. In order to let Psalm know about Nextcloud interfaces (the OCP namespace), you can install the API package. Afterwards you’ll be able to check the app with the following psalm.xml that should be put into the root of the app.

<?xml version="1.0"?>
    xsi:schemaLocation=" vendor/vimeo/psalm/config.xsd"
        <directory name="lib" />
            <directory name="vendor" />
            <directory name="lib/Vendor" />
        <directory name="vendor" />
            <directory name="vendor/phpunit/php-code-coverage" />
            <errorLevel type="suppress">
                <referencedClass name="OC" />
            <errorLevel type="suppress">
                <referencedClass name="Doctrine\DBAL\Schema\Schema" />
                <referencedClass name="Doctrine\DBAL\Schema\SchemaException" />
                <referencedClass name="Doctrine\DBAL\Driver\Statement" />
                <referencedClass name="Doctrine\DBAL\Schema\Table" />


The definition supresses usages of the global and static class OC like \OC::$server, which is discouraged but still found in some apps. The doctrine supression is currently necessary as the database mappers and schema abstractions leak some of the 3rd party libraries of Nextcloud that are not known to Psalm.

You can put this process into a GitHub Action that is run for every pull request.

name: Static analysis
on: [push]
    runs-on: ubuntu-latest
            ocp-version: [ 'dev-master', 'v20.0.0' ]
    name: Nextcloud ${{ matrix.ocp-version }}
        - name: Checkout
            uses: actions/checkout@master
        - name: Set up php
            uses: shivammathur/setup-php@master
                php-version: 7.4
                coverage: none
        - name: Install dependencies
            run: composer i
        - name: Install dependencies
            run: composer require --dev christophwurst/nextcloud:${{ matrix.ocp-version }}
        - name: Run coding standards check
            run: composer run psalm

This creates a matrix, where the app is tested against dev-master, the latest version of OCP found in the main branch of Nextcloud server, as well as v20.0.0, the currently latest stable release. Adjust this to your needs.