Sajib Khan

Master Git: 10 Common Developer Pitfalls to Avoid

Master Git: 10 Common Developer Pitfalls to Avoid šŸ§ 

After spending more than a decade crafting developer experiences and earning a Git gold badge on Stack Overflow, I've had my fair share of git adventures.

Git is like a time machine for your code - incredibly powerful when used right, but it can also feel like a maze when things go wrong. Don't worry though! I'll walk you through the most common pitfalls I've seen (and helped others with) throughout my journey, along with practical, real-world solutions that you can start using today.

1. Never Push Directly to mainĀ (orĀ master) Branch šŸš«

Pushing directly to the main branch is like editing a live production website. This is problematic because:

  • Bypasses code review process
  • Can introduce bugs directly into production
  • Makes it harder to roll back changes
git checkout main
# Make some changes ...

git add .
git commit -m "Implement new left sidebar" # DON'T DO THIS!
git push origin main                       # DANGER: Pushing directly to the main branch

The Better Way

Think of feature branches as your development sandbox ā€“ a safe space to experiment, fail, and perfect your code before it goes live.

# 1. Start fresh: Get the latest main branch code
git checkout main
git pull origin main

# 2. Create and switch to a new feature branch
git checkout -b feature/sidebar

# 3. Make your changes and commit
git add .
git commit -m "Implement new left sidebar"

# 4. Push to remote and create PR
git push origin feature/sidebar

Pro Tips šŸ’”

Many Git hosting services (GitHub, GitLab, Bitbucket) offerĀ branch protection rules. These rules prevent direct pushes to specific branches (likeĀ main), enforce mandatory status checks (e.g., passing tests), and require a minimum number of approved code reviews before a PR can be merged.Ā Always enable these for your main branches.

2. Large, Infrequent Commits šŸ“š

Making large, infrequent commits is like writing a book without chapters ā€“ it's hard to navigate, review, and impossible to refactor effectively.

# Working for days without committing
git add .
git commit -m "massive update with multiple features"  # DON'T DO THIS!

The Better Way

Each commit should represent one logical change. Think of commits as clear, reversible steps in your development story.

# Traditional way
git add -p

# Modern alternatives
git add --interactive  # Interactive menu
git add --patch       # Chunk-by-chunk staging

# Using modern Git GUIs
# - GitKraken
# - Fork
# - VS Code Git Lens

Pro Tips šŸ’”

  • Use git stash to temporarily store unrelated changes
  • Leverage IDE's built-in Git tools for visual diffing
  • Configure aliases for common staging patterns
  • Use commit templates for consistency

3. Poor Commit Messages šŸ“

A commit message is a concise summary ofĀ whyĀ andĀ whatĀ was changed. Vague messages like "update code," "fix bug", or just "WIP" (Work In Progress) provide no context. In today's collaborative development environment, clear commit messages are more crucial than ever.

git commit -m "update code"   # what kind of updates? What stuff?
git commit -m "fix bug"       # which bug
git commit -m "WIP"           # Don't commit WIP, stash it!

The Better Way

Think of commit messages as documentation that automatically organizes itself. So, provide a descriptive commit message.

git commit -m "Implement email/password login flow"

# multi-line commit message
git commit -m "Add password reset functionality" -m "- Add reset password form
- Implement email verification
- Add rate limiting for reset attempts
- Update user documentation"

Pro Tips šŸ’”

  • Link commits to issue trackers (e.g., Fix(login): resolve #123)
  • Use imperative mood ("Add" not "Added")

4. Ignoring .gitignore šŸ™ˆ

An improperly configured .gitignore can lead to bloated repositories, exposed secrets, and unnecessary merge conflicts. In modern web development, with numerous build tools and dependencies, proper ignore patterns are more important than ever.

git add .env           # DON'T commit sensitive data!
git add node_modules/  # DON'T commit dependencies!

The Better Way

A well-structured .gitignore file is your first line of defense against repository pollution.

# Dependencies
node_modules/

# Production
/build
/dist

# Environment Variables
.env
.env.local
.env.development.local
.env.production.local

# IDE specific files
.idea/
.vscode/

# OS generated files
.DS_Store
.DS_Store?

...

Pro Tips šŸ’”

If you've accidentally committed files that should be ignored, you can remove them from Git's tracking without deleting them from your local filesystem.

# 1. Remove the file/directory from git's index (but keep local copy)
git rm --cached .env
git rm -r --cached node_modules/

# Update .gitignore, then commit the changes
git add .gitignore
git commit -m "Update gitignore and remove sensitive files"

5. Merge Conflict Panic šŸ˜±

Merge conflicts happen when Git cannot automatically reconcile diverging changes in the same lines of a file, or when a file was deleted in one branch and modified in another. This is a normal part of collaborative development. Merge conflicts often trigger panic among developers, leading to hasty resolutions that can introduce bugs or lose important code changes.

# After a 'git pull' or 'git merge' that results in conflicts
<<<<<<< HEAD                 # Your current branch's version
const buttonColor = 'blue';
=======                      # Separator
const buttonColor = 'red';   # Incoming branch's version
>>>>>>> feature/new-design

# ... blindly picking one side ...
git checkout --theirs .      # DANGER: Discards your work!
# or
git checkout --ours .        # DANGER: Discards your work!

The Better Way

Think of merge conflicts not as problems, but as opportunities to ensure code integrity. Git provides markers (<<<<<<<,Ā =======,Ā >>>>>>>) to show conflicting sections. Use a good merge tool, understand each change, resolve them carefully, and always test your code after resolution.

# 1. Initiate the merge (or pull, which does a merge internally)
git pull origin main # or git merge feature/branch

# 2. If conflicts occur, Git will tell you which files are conflicted.
# You'll see messages like: "CONFLICT (content): Merge conflict in src/App.js"
git status # Will show files with "both modified"

# 3. Open the conflicted files in your code editor. You'll see markers:
# <<<<<<< HEAD
# Your changes on the current branch
# =======
# Changes from the branch you are merging from
# >>>>>>> branch-name-or-commit-hash

# 4. Manually edit the file to the desired state, removing the markers.
# Example: If you want both changes
# const user = getCurrentUser();
# const fetchData = () => { /* ... */ };

# 5. After resolving, stage the files to mark it as resolved.
git add .

# 6. Continue the merge by committing. Git provides a default merge commit message
git commit # Will use default merge message, you can edit this message if needed

Pro Tips šŸ’”

  • Always create a backup branch before resolving conflicts
  • Use semantic merge tools for specific file types
  • Keep commits small to minimize conflict scope
  • Communicate with team members about conflicting changes

6. Not Using Git Hooks āš“

Many projects rely on linters (ESLint, Stylelint), formatters (Prettier), and unit tests to maintain code quality and consistency. However, developer sometimes forget to run these tools before committing or pushing. This leads broken builds and inconsistent codebases.

The Better Way

Git hooks are like automated guardians for your codebase, ensuring quality standards are met before code is committed or pushed. With tools like Husky and modern IDE integrations, setting them up is easier than ever. Here is the basic setup with Husky.

# 1. Install Husky and lint-staged (for optimal performance)
npm install husky lint-staged --save-dev

# 2. Initialize Husky
npx husky install

# 3. Add a pre-commit hook that runs lint-staged
# (this creates a file in .husky/pre-commit)
npx husky add .husky/pre-commit "npx lint-staged"
}

Configure lint-staged in your package.json file.

# package.json
{
  "lint-staged": {
    "*.{js,jsx,ts,tsx}": [
      "eslint --fix",
      "prettier --write",
      "jest --findRelatedTests"
    ],
    "*.{json,md,css}": "prettier --write",
    "*.{css,scss}": "stylelint --fix"
   }
}

Now, every time youĀ git commit,Ā lint-stagedĀ will automatically run ESLint and Prettier on your staged JavaScript/TypeScript files, and Prettier on JSON/Markdown/CSS files. If linting fails or any errors occur, the commit will be aborted.

you can also add aĀ pre-pushĀ hook to run tests

# Add a pre-push hook
npx husky add .husky/pre-push "npm test"

# Make sure the hook is executable (permission)
chmod +x .husky/pre-push

Now,Ā npm testĀ (e.g., your Jest tests) will run every time youĀ git push. If tests fail, the push will be aborted.

Common Gotchas to Avoid āš ļø

  • Don't put heavy operations in pre-commit hooks (they run frequently)
  • Keep pre-push hooks focused on critical checks
  • Always provide a way to bypass hooks in emergencies (git commit --no-verify)

Pro Tips šŸ’”

  • IDE Integration: VS Code and WebStorm now show Git hook outputs directly in the editor
  • Performance: Use lint-staged to only check changed files
  • Team Adoption: Add hook setup instructions to your project's README
  • CI/CD Integration: Use the same checks in your GitHub Actions or GitLab CI

7. Forgetting to Pull Before Push šŸ”„

Pushing changes without syncing with the remote repository is like merging into traffic without checking your mirrors. In a team environment, multiple developers are often working on the same repository. If you finish your work and try to push without first pulling the latest changes from the remote, Git will detect that your local branch is "behind" the remote and has diverging commits. It will then reject your push to prevent you from overwriting others' work.

# Working for hours, then...
git push origin feature/branch  # Rejected! Remote has new changes

The Better Way

UsingĀ git pull --rebaseĀ is generally preferred for feature branches because it keeps your commit history linear and clean. Instead of creating a "merge commit,"Ā rebaseĀ rewrites your local commits to applyĀ on topĀ of the latest remote changes.

# 1. Commit your local changes first
git add .
git commit -m "Implement the settings page UI"

# 2. Pull the latest changes from the remote, rebasing your local commits
# '--rebase' applies your local commits on top of the fetched remote commits.
# This keeps your branch history clean and linear.
git pull --rebase origin feature/settings

# If conflicts occur during rebase:
# Git will pause and tell you to resolve conflicts.
# Edit the conflicted files, 'git add' them, then 'git rebase --continue'.
# To abort a rebase: 'git rebase --abort'

# 3. Once the rebase is successful (or conflicts resolved), push your changes
git push origin feature/settings

Pro Tips šŸ’”

Understanding rebase is crucial:

Imagine your branch history:Ā A -- B -- C (origin/feature)Ā \Ā D -- E (local/feature)

Someone else pushesĀ F:Ā A -- B -- C -- F (origin/feature)Ā \Ā D -- E (local/feature)

AĀ git pull --rebaseĀ would rewrite D and E to appearĀ afterĀ F:Ā A -- B -- C -- F -- D' -- E' (local/feature)Ā This results in a cleaner, linear history without extra merge commits, which is great for readability and makes tools likeĀ git bisectmore effective.

8. Misusing Force Push šŸ’„

git push --forceĀ (-f) forcefully overwrites the remote branch with your local branch,Ā discarding any changes on the remote that you don't have locally. This is a dangerous command in shared repositories because it can easily wipe out your teammates' work if they pushed something you haven't pulled yet. It's like writing over someone else's document without checking what they've added.

git push -f origin feature/branch  # DANGER: Can overwrite others' work!

The Better Way

When you need to force push (e.g., after an interactive rebase where you've rewritten history locally), always useĀ git push --force-with-lease. This command is a safer alternative because itĀ only force pushes if the remote branch hasn't been updated by anyone else since you last pulled.Ā If there are new changes on the remote that you don't have, it will fail, protecting against accidental overwrites.

# After you've performed a local rebase and rewritten history (e.g., squashed commits or, rebase)
# You need to force push because your local history no longer matches the remote
git rebase -i HEAD~3 # Interactive rebase, changing history

# Now, push the rewritten history safely
git push --force-with-lease origin feature/my-branch

When isĀ force-with-leaseĀ used?

  • After an interactive rebase (git rebase -i) where you've squashed, reordered, or edited commits.
  • After aĀ git commit --amendĀ on a commit that has already been pushed.
  • After aĀ git reset --hardĀ to a previous commit, and you want to overwrite the remote history.

In essence, whenever you rewrite history on a branch that has already been pushed to a remote, you'll need a force push.Ā force-with-leaseĀ is the responsible way to do it.

Pro Tips šŸ’”

  • Never force push to main branches
  • Always announce force pushes to team
  • Keep feature branches short-lived
  • Use branch protection rules

9. Ignoring Git History šŸ“œ

Not utilizing Git's history features effectively is like having a time machine but never using it. Many developers use Git primarily for saving changes (add,Ā commit) and synchronizing (pull,Ā push). However, Git's true power lies in its rich history. Ignoring the tools to navigate and analyze this history means you miss out on crucial insights for debugging, understanding code evolution, and collaborating effectively. You might struggle to find when a bug was introduced, who changed a particular line, or why a certain decision was made.

# Just looking at recent commits
git log  # Scrolling through endless commits

The Better Way

Think of Git history as your codebase's documentary ā€“ it tells the story of your project's evolution.

# Basic log
git log

# Concise one-line summary
git log --oneline

# Show graph with all branches and tags
git log --oneline --decorate --all --graph

# Search commits by content
git log -S "functionName"

# Show changes introduced by each commit (patch)
git log -p

# Filter by author
git log --author="Jane Doe"

# Filter by date
git log --since="2 weeks ago" --until="yesterday"

# Filter by commit message content
git log --grep="feature"

# Log commits that modified a specific file
git log src/components/MyComponent.js

TheĀ --all,Ā --graph,Ā --decorate, andĀ --onelineĀ flags together create a powerful visualization of your branch history, showing merges and different lines of development.

Advanced History Navigation šŸš€

git blame

This command shows who last modified each line of a file and in which commit. Invaluable for understanding why a specific piece of code is there or who to ask about it.

git blame src/components/MyComponent.js
# Output:
# ^f5d6a74 (John Doe 2023-10-26 10:30:15 -0700  1) import React from 'react';
# 0b9c1d2e (Jane Smith 2023-11-01 14:15:22 -0800  2) const MyComponent = () => {
# ...

git diff

Compares changes between various points (commits, branches, working directory).

git diff                          # Changes in your working directory not yet staged
git diff --staged                 # Changes that are staged but not committed
git diff HEAD~1 HEAD              # Changes between the last two commits
git diff feature/new-feature main # Changes between two branches

git bisect

A powerful tool for finding the commit that introduced a bug using a binary search approach. This is a lifesaver for hard-to-find regressions.

# 1. Start the bisect process
git bisect start

# 2. Tell Git the current state (usually 'bad' if you're on a broken version)
git bisect bad

# 3. Tell Git a known good commit (e.g., from a stable release or an older commit)
git bisect good v1.0.0 # Or use a commit hash: git bisect good 0a1b2c3d

# Git will now automatically check out a commit in the middle of that range.
# 4. Test your application on this new commit.
#    If the bug is present:
git bisect bad
#    If the bug is NOT present:
git bisect good

# Repeat step 4 until Git finds the exact commit that introduced the bug.
# 5. Finish the bisect process
git bisect reset # Returns you to the branch you were on initially

Pro Tips šŸ’”

  • Use git reflog for recovery
  • Maintain clean commit history
  • Use meaningful commit messages
  • Regular history maintenance

10. Not Tagging Releases šŸ·ļø

Many developer neglect to create Git tags for their stable versions or production releases. This oversight means you lack clear reference points in your projectā€™s history for deployed builds, major milestones, or hotfix bases. Without tags, rolling back to a known-good release or applying a hotfix to a specific deployed version becomes much harderā€”youā€™re forced to hunt through logs and commit hashes, increasing the risk of deploying the wrong code.

The Better Way

Git tags allow you to mark specific points in your repositoryā€™s history as being importantā€”most commonly for marking production/staging releases (e.g.,Ā v1.0.0,Ā v1.1.3-rc). Tags are lightweight, easy to create, and tremendously helpful when troubleshooting, rolling back, or referencing release notes.

# While on the commit you want to tag (usually the latest on main)
git tag -a v1.0.0 -m "Release 1.0.0: Initial production release"

# Or Create a Lightweight Tag (just a name pointing to a commit)
git tag v1.0.0

# Push tags to remote
git push --tags
# Or to push just a single tag:
git push origin v1.0.0

# View all tags
git tag

Pro Tips šŸ’”

Most CI/CD systems and deployment scripts can be configured to trigger deployments or builds based on new tags, ensuring consistent and reproducible releases.