Testland
Skills & AgentsBlogAbout
Browse all skills & agents

buf-cli-lint-breaking-build

Wraps the buf CLI for protobuf workflow gating: `buf build` (compile / validate .proto files), `buf lint` (STANDARD rule set: snake_case field names, Service-suffixed service names), `buf breaking --against <ref>` (detect breaking changes vs a git baseline or registry image), and `buf format`. Use as the proto-lint + breaking-change gate in CI for any gRPC service, to debug a buf breaking failure by rule ID (e.g. FIELD_NO_DELETE_UNLESS_NUMBER_RESERVED), and to select the FILE vs WIRE_JSON breaking ruleset for binary-only vs JSON consumers. Composes protobuf-versioning-strategy-reference for the catalog of what is and isn't breaking. Distinct from qa-contract-testing/protobuf-compat-checking which performs cross-service contract testing; this skill is single-service schema lint + breaking-build.

buf-cli-lint-breaking-build

Overview

Per buf.build/docs/cli/quickstart/, "the Buf CLI requires version 1.32.0 or higher" and provides five primary commands: build, lint, breaking, generate, format. This skill wraps three of them - build, lint, breaking - as the proto-PR gate. Pairs with protobuf-versioning-strategy-reference for the catalog of what counts as breaking and why.

When to use

  • Adding buf as the proto lint + breaking-change gate on a new repo.
  • A PR changes .proto files - need to gate the merge.
  • Investigating a buf breaking failure - what rule fired?
  • Configuring buf for a monorepo with multiple proto modules.

Authoring

Install

Per buf docs, install via Homebrew, Go install, or release binary. Verify:

buf --version
# 1.32.0 or higher

Configure buf.yaml

The v2 format per buf.build/docs/cli/quickstart/:

version: v2
modules:
  - path: proto
lint:
  use:
    - STANDARD
breaking:
  use:
    - FILE          # default; choose per protobuf-versioning-strategy-reference

STANDARD is the recommended lint rule set; it enforces conventions like "Field name should be lower_snake_case" and "Service name should be suffixed with Service".

The choice of breaking.use (FILE / PACKAGE / WIRE_JSON / WIRE) follows the per-deployment-model logic in protobuf-versioning-strategy-reference.

Configure buf.gen.yaml (codegen)

version: v2
managed:
  enabled: true
plugins:
  - remote: buf.build/protocolbuffers/go
    out: gen
    opt: paths=source_relative

managed: enabled: true automatically sets file options without hand-coding (e.g., go_package).

Running

Local validation pipeline

buf build && buf lint && buf breaking --against ".git#branch=main"

Three gates in order: compile, lint, breaking. All three must pass before merge.

buf build

buf build
# Silent exit on success

Compiles every .proto in the workspace. Silent → success. Any output → error. Equivalent to protoc compilation but reads buf.yaml for paths.

buf lint

buf lint
# Emits violations as: <file>:<line>:<col>:<msg>

Validates against the configured rule set. Common failures:

FailureRuleFix
Field name "userId" should be lower_snake_caseFIELD_LOWER_SNAKE_CASERename to user_id
Service "Users" should be suffixed with "Service"SERVICE_SUFFIXRename to UsersService
Message "user_data" should be UpperCamelCaseMESSAGE_UPPER_CAMEL_CASERename to UserData
Enum value should be SCREAMING_SNAKE_CASEENUM_VALUE_UPPER_SNAKE_CASERename

buf breaking

buf breaking --against ".git#branch=main"
# Compares working tree against main branch

Baselines (per buf docs):

BaselineUse
".git#branch=main"Compare against main branch (CI default)
".git#tag=v1.0.0"Compare against a release tag
".git#subdir=path/to/proto"Sub-directory baseline (monorepo)
"path/to/image.bin"Pre-built buf build image file
"buf.build/owner/module"Compare against published BSR image

Output on violation:

proto/foo.proto:42:5: Field "old_name" with type "string" no longer exists (rule FIELD_NO_DELETE_UNLESS_NUMBER_RESERVED).

Per buf breaking rules: each violation cites the rule that fired so you know which category constraint was violated.

Parsing results

CLI output (text, default)

Each violation: <file>:<line>:<col>: <message> (rule <RULE_ID>).

Pipe to grep / awk for counts:

buf breaking --against ".git#branch=main" 2>&1 | tee buf-breaking.log
wc -l buf-breaking.log

Machine-readable output

buf lint --error-format=json
# Emits: [{"path":"...","start_line":...,"start_col":...,"end_line":...,"type":"FIELD_LOWER_SNAKE_CASE","message":"..."}]

buf breaking --against ".git#branch=main" --error-format=json

For consumption by a unified reporter (sibling to qa-iac/iac-policy-checker).

CI integration

# .github/workflows/proto-gate.yml
name: proto-gate
on:
  pull_request:
    paths:
      - "**/*.proto"
      - "buf.yaml"
      - "buf.gen.yaml"

jobs:
  buf:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v5
        with:
          fetch-depth: 0   # Required for `--against ".git#branch=main"`
      - uses: bufbuild/buf-setup-action@v1
        with:
          buf_user: ${{ secrets.BUF_USER }}
          buf_api_token: ${{ secrets.BUF_API_TOKEN }}
      - run: buf build
      - run: buf lint
      - run: buf breaking --against ".git#branch=main"

Key: fetch-depth: 0 so git has the baseline commit available.

The official bufbuild/buf-setup-action and bufbuild/buf-breaking-action are convenient but the raw CLI calls above work without them.

Per-PR comment

      - if: failure()
        uses: marocchino/sticky-pull-request-comment@v2
        with:
          header: proto-gate
          message: |
            ❌ `buf breaking` failed. See log:
            ```
            ${{ steps.breaking.outputs.stdout }}
            ```
            Consult
            [protobuf-versioning-strategy-reference](../protobuf-versioning-strategy-reference/SKILL.md)
            for whether this change is genuinely required and how
            to do it safely (reserve, add new, deprecate old).

Anti-patterns

Anti-patternWhy it failsFix
Skipping buf breaking on PRSubtle wire breakage merges; consumers crash at deploy timeAlways gate; never --ignore blanket
Comparing against the PR's own merge baseSelf-baseline; no detectionUse ".git#branch=main"
fetch-depth: 1 in CIgit can't reach baseline → buf errorsfetch-depth: 0
breaking.use: WIRE for codegen consumersGenerated code break (rename) passes; consumer build failsUse FILE or PACKAGE per protobuf-versioning-strategy-reference
Adding --ignore to suppress a real violationSilent regressionUse proper reserved + deprecation instead
Lint set MINIMAL for new projectsMisses snake_case + service-suffix conventions earlyUse STANDARD from day 1
One buf.yaml per proto fileDoesn't compose; lint runs N timesOne buf.yaml at module root
Inconsistent baselines (main vs tag)Different reviewers see different verdictsPick one CI baseline; document

Limitations

  • Semantic vs wire breakage. Per protobuf-versioning-strategy-reference, buf detects binary/codegen breakage. Semantic meaning changes ("field now means net price, not gross") are undetectable.
  • No cross-service compatibility. This is single-service schema lint. For service-to-service contract testing see qa-contract-testing/protobuf-compat-checking.
  • BSR features require auth. Remote plugins, registry pushes, and buf.build/... baselines need a BSR account.
  • JSON-name detection is in WIRE_JSON only. Services that use only binary won't see JSON name changes detected.
  • Doesn't generate code automatically. buf generate is a separate step; this skill scopes to gating.

References