SONARPY-2997 Rule S7513: TaskGroup/Nursery should not be used for a single start call (#313)

GitOrigin-RevId: ef7116e6b6c1c98b7ffafb1e1a6965f69fd06487

Author: ghislainpiot

python-checks/src/main/java/org/sonar/python/checks/OpenSourceCheckList.java

@@ -377,6 +377,7 @@ public Stream<Class<?>> getChecks() {
       SynchronousOsCallsInAsyncCheck.class,
       TempFileCreationCheck.class,
       ImplicitlySkippedTestCheck.class,
+      TaskGroupNurseryUsedOnlyOnceCheck.class,
       TimeSleepInAsyncCheck.class,
       ToDoCommentCheck.class,
       TooManyLinesInFileCheck.class,

python-checks/src/main/java/org/sonar/python/checks/TaskGroupNurseryUsedOnlyOnceCheck.java

@@ -0,0 +1,130 @@
+/*
+ * SonarQube Python Plugin
+ * Copyright (C) 2011-2025 SonarSource SA
+ * mailto:info AT sonarsource DOT com
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the Sonar Source-Available License Version 1, as published by SonarSource SA.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+ * See the Sonar Source-Available License for more details.
+ *
+ * You should have received a copy of the Sonar Source-Available License
+ * along with this program; if not, see https://sonarsource.com/license/ssal/
+ */
+
+package org.sonar.python.checks;
+
+import java.util.Optional;
+import java.util.Set;
+
+import org.sonar.check.Rule;
+import org.sonar.plugins.python.api.PythonSubscriptionCheck;
+import org.sonar.plugins.python.api.SubscriptionContext;
+import org.sonar.plugins.python.api.tree.CallExpression;
+import org.sonar.plugins.python.api.tree.Name;
+import org.sonar.plugins.python.api.tree.QualifiedExpression;
+import org.sonar.plugins.python.api.tree.Tree;
+import org.sonar.plugins.python.api.tree.WithItem;
+import org.sonar.plugins.python.api.tree.WithStatement;
+import org.sonar.plugins.python.api.types.v2.TriBool;
+import org.sonar.python.semantic.v2.SymbolV2;
+import org.sonar.python.tree.TreeUtils;
+import org.sonar.python.types.v2.TypeCheckBuilder;
+
+@Rule(key = "S7513")
+public class TaskGroupNurseryUsedOnlyOnceCheck extends PythonSubscriptionCheck {
+  private static final String MESSAGE = "Replace the %s with a direct function call when it only ever spawns one task.";
+  private static final String SECONDARY_MESSAGE = "Only task created here";
+
+  private TypeCheckBuilder asyncioTaskGroupTypeChecker;
+  private TypeCheckBuilder trioNurseryTypeChecker;
+  private TypeCheckBuilder anyioTaskGroupTypeChecker;
+  private static final Set<String> START_METHOD_NAMES = Set.of("start_soon", "start", "create_task");
+
+  @Override
+  public void initialize(Context context) {
+    context.registerSyntaxNodeConsumer(Tree.Kind.FILE_INPUT, this::initTypeCheckers);
+    context.registerSyntaxNodeConsumer(Tree.Kind.WITH_STMT, this::checkWithStatement);
+  }
+
+  private void initTypeCheckers(SubscriptionContext ctx) {
+    asyncioTaskGroupTypeChecker = ctx.typeChecker().typeCheckBuilder().isTypeOrInstanceWithName("asyncio.TaskGroup");
+    trioNurseryTypeChecker = ctx.typeChecker().typeCheckBuilder().isTypeWithFqn("trio.open_nursery");
+    anyioTaskGroupTypeChecker = ctx.typeChecker().typeCheckBuilder().isTypeOrInstanceWithName("anyio.create_task_group");
+  }
+
+  private void checkWithStatement(SubscriptionContext ctx) {
+    var withStmt = (WithStatement) ctx.syntaxNode();
+    if (!withStmt.isAsync()) {
+      return;
+    }
+    for (var item : withStmt.withItems()) {
+      handleWithItem(ctx, item, withStmt);
+    }
+  }
+
+  private void handleWithItem(SubscriptionContext ctx, WithItem item, WithStatement withStmt) {
+    var test = item.test();
+    if (!(test instanceof CallExpression callExpr) || isTaskGroupOrNurseryCall(callExpr).isEmpty()) {
+      return;
+    }
+
+    var aliasExpr = item.expression();
+    if (!(aliasExpr instanceof Name aliasNameTree)) {
+      return;
+    }
+
+    var aliasSym = aliasNameTree.symbolV2();
+    if (aliasSym == null) {
+      return;
+    }
+
+    shouldRaise(aliasSym, withStmt)
+      .ifPresent(spawnCall -> ctx.addIssue(aliasExpr, String.format(MESSAGE, isTaskGroupOrNurseryCall(callExpr).get())).secondary(spawnCall, SECONDARY_MESSAGE));
+  }
+
+  private Optional<String> isTaskGroupOrNurseryCall(CallExpression callExpr) {
+    var calleeType = callExpr.callee().typeV2();
+    if (asyncioTaskGroupTypeChecker.check(calleeType) == TriBool.TRUE || anyioTaskGroupTypeChecker.check(calleeType) == TriBool.TRUE) {
+      return Optional.of("TaskGroup");
+    }
+    if (trioNurseryTypeChecker.check(calleeType) == TriBool.TRUE) {
+      return Optional.of("Nursery");
+    }
+    return Optional.empty();
+  }
+
+  private static boolean isSpawnCall(QualifiedExpression qualifiedExpression) {
+    return START_METHOD_NAMES.contains(qualifiedExpression.name().name());
+  }
+
+  private static Optional<Tree> shouldRaise(SymbolV2 aliasSym, WithStatement withStmt) {
+    var usagesInWithScope = aliasSym.usages().stream()
+      .filter(u -> !u.isBindingUsage())
+      .filter(u -> TreeUtils.firstAncestor(u.tree(), t -> t == withStmt) != null)
+      .toList();
+
+    Tree spawnCall = null;
+    for (var usage : usagesInWithScope) {
+      var parent = usage.tree().parent();
+
+      if (parent instanceof QualifiedExpression qe && isSpawnCall(qe)) {
+        if (spawnCall != null || isInsideLoop(qe)) {
+          return Optional.empty();
+        }
+        spawnCall = qe;
+      } else {
+        return Optional.empty();
+      }
+    }
+
+    return Optional.ofNullable(spawnCall);
+  }
+
+  private static boolean isInsideLoop(Tree tree) {
+    return TreeUtils.firstAncestorOfKind(tree, Tree.Kind.FOR_STMT, Tree.Kind.WHILE_STMT) != null;
+  }
+}

python-checks/src/main/resources/org/sonar/l10n/py/rules/python/S7513.html

@@ -0,0 +1,109 @@
+<p>This rule raises when a TaskGroup or Nursery body contains only a single call to <code>.start</code> or <code>.start_soon</code> without passing
+itself as a parameter.</p>
+<h2>Why is this an issue?</h2>
+<p>TaskGroup and Nursery are powerful tools for structured concurrency that automatically manage the lifecycle of multiple concurrent tasks. However,
+when they are used to spawn only a single task that doesn’t need the nursery/TaskGroup instance itself, they add unnecessary overhead and
+complexity.</p>
+<p>The main issues with using TaskGroup and Nursery for single tasks are:</p>
+<ul>
+  <li> <strong>Unnecessary overhead</strong>: Creating a nursery or TaskGroup involves additional setup and teardown that serves no purpose when only
+  one task is spawned </li>
+  <li> <strong>Misleading code</strong>: The presence of a nursery suggests that multiple tasks will be managed, which can be confusing </li>
+  <li> <strong>Reduced readability</strong>: The structured concurrency syntax is more verbose than a simple function call </li>
+</ul>
+<h3>What is the potential impact?</h3>
+<ul>
+  <li> <strong>Performance</strong>: Minor performance overhead from unnecessary nursery/TaskGroup creation </li>
+  <li> <strong>Maintainability</strong>: Code is more complex than necessary, making it harder to understand and maintain </li>
+  <li> <strong>Code clarity</strong>: The intent of the code is obscured by unnecessary structured concurrency constructs </li>
+</ul>
+<h2>How to fix it in Asyncio</h2>
+<p>Replace the TaskGroup with a direct function call when the TaskGroup body contains only a single <code>create_task()</code> call.</p>
+<h3>Code examples</h3>
+<h4>Noncompliant code example</h4>
+<pre data-diff-id="2" data-diff-type="noncompliant">
+import asyncio
+
+async def worker_task():
+    await asyncio.sleep(1)
+
+async def main():
+    # Unnecessary TaskGroup for a single task
+    async with asyncio.TaskGroup() as tg:
+        tg.create_task(worker_task())
+</pre>
+<h4>Compliant solution</h4>
+<pre data-diff-id="2" data-diff-type="compliant">
+import asyncio
+
+async def worker_task():
+    await asyncio.sleep(1)
+
+async def main():
+    # Direct function call is simpler and more efficient
+    await worker_task()
+</pre>
+<h2>How to fix it in Trio</h2>
+<p>Replace the nursery with a direct function call when the nursery body contains only a single <code>start_soon()</code> or <code>start()</code>
+call.</p>
+<h3>Code examples</h3>
+<h4>Noncompliant code example</h4>
+<pre data-diff-id="1" data-diff-type="noncompliant">
+import trio
+
+async def worker_task():
+    await trio.sleep(1)
+
+async def main():
+    # Unnecessary nursery for a single task
+    async with trio.open_nursery() as nursery:
+        nursery.start_soon(worker_task)
+</pre>
+<h4>Compliant solution</h4>
+<pre data-diff-id="1" data-diff-type="compliant">
+import trio
+
+async def worker_task():
+    await trio.sleep(1)
+
+async def main():
+    # Direct function call is simpler and more efficient
+    await worker_task()
+</pre>
+<h2>How to fix it in AnyIO</h2>
+<p>Replace the task group with a direct function call when the task group body contains only a single <code>start_soon()</code> or
+<code>start()</code> call.</p>
+<h3>Code examples</h3>
+<h4>Noncompliant code example</h4>
+<pre data-diff-id="3" data-diff-type="noncompliant">
+import anyio
+
+async def worker_task():
+    await anyio.sleep(1)
+
+async def main():
+    # Unnecessary task group for a single task
+    async with anyio.create_task_group() as tg:
+        tg.start_soon(worker_task)
+</pre>
+<h4>Compliant solution</h4>
+<pre data-diff-id="3" data-diff-type="compliant">
+import anyio
+
+async def worker_task():
+    await anyio.sleep(1)
+
+async def main():
+    # Direct function call is simpler and more efficient
+    await worker_task()
+</pre>
+<h2>Resources</h2>
+<h3>Documentation</h3>
+<ul>
+  <li> Asyncio documentation - <a href="https://docs.python.org/3/library/asyncio-task.html#task-groups">Task Groups</a> </li>
+  <li> Trio documentation - <a href="https://trio.readthedocs.io/en/latest/reference-core.html#nurseries-and-spawning">Nurseries and spawning</a>
+  </li>
+  <li> AnyIO documentation - <a href="https://anyio.readthedocs.io/en/stable/tasks.html#creating-and-managing-tasks">Creating and managing tasks</a>
+  </li>
+</ul>
+

python-checks/src/main/resources/org/sonar/l10n/py/rules/python/S7513.json

@@ -0,0 +1,26 @@
+{
+  "title": "TaskGroup\/Nursery should not be used for a single start call",
+  "type": "CODE_SMELL",
+  "status": "ready",
+  "remediation": {
+    "func": "Constant\/Issue",
+    "constantCost": "5min"
+  },
+  "tags": [
+    "async",
+    "asyncio",
+    "trio",
+    "anyio"
+  ],
+  "defaultSeverity": "Minor",
+  "ruleSpecification": "RSPEC-7513",
+  "sqKey": "S7513",
+  "scope": "All",
+  "quickfix": "unknown",
+  "code": {
+    "impacts": {
+      "MAINTAINABILITY": "LOW"
+    },
+    "attribute": "CONVENTIONAL"
+  }
+}

python-checks/src/main/resources/org/sonar/l10n/py/rules/python/Sonar_way_profile.json

@@ -281,6 +281,7 @@
     "S7510",
     "S7511",
     "S7512",
+    "S7513",
     "S7514",
     "S7516",
     "S7517",

python-checks/src/test/java/org/sonar/python/checks/TaskGroupNurseryUsedOnlyOnceCheckTest.java

@@ -0,0 +1,30 @@
+/*
+ * SonarQube Python Plugin
+ * Copyright (C) 2011-2025 SonarSource SA
+ * mailto:info AT sonarsource DOT com
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the Sonar Source-Available License Version 1, as published by SonarSource SA.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+ * See the Sonar Source-Available License for more details.
+ *
+ * You should have received a copy of the Sonar Source-Available License
+ * along with this program; if not, see https://sonarsource.com/license/ssal/
+ */
+
+package org.sonar.python.checks;
+
+import org.junit.jupiter.api.Test;
+import org.sonar.python.checks.utils.PythonCheckVerifier;
+
+class TaskGroupNurseryUsedOnlyOnceCheckTest {
+
+  @Test
+  void test() {
+    PythonCheckVerifier.verify("src/test/resources/checks/taskGroupNurseryUsedOnlyOnce.py", new TaskGroupNurseryUsedOnlyOnceCheck());
+  }
+
+}