diff --git a/.github/workflows/functional-tests.yml b/.github/workflows/functional-tests.yml index b1cc947..f47d1f1 100644 --- a/.github/workflows/functional-tests.yml +++ b/.github/workflows/functional-tests.yml @@ -2,10 +2,10 @@ name: Functional Tests on: # yamllint disable-line rule:truthy + pull_request: {} push: branches: - - "main" - pull_request: + - main defaults: run: diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 5b3ce3c..88c77ed 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -7,30 +7,6 @@ on: # yamllint disable-line rule:truthy - "v*.*.*" jobs: - create-release: - name: Create release - runs-on: ubuntu-latest - steps: - - name: Checkout ${{ github.repository }} - uses: actions/checkout@v4 - with: - fetch-depth: 0 - - name: Get changelog - id: changelog - uses: simbo/changes-since-last-release-action@v1 - - name: Create release - uses: softprops/action-gh-release@v2 - with: - tag_name: ${{ github.ref }} - name: ${{ github.ref_name }} - token: ${{ secrets.GITHUB_TOKEN }} - body: | - # Changelog - - ${{ steps.changelog.outputs.log }} - draft: false - prerelease: false - - name: Bump tags - uses: fischerscode/tagger@v0 - with: - prefix: v + github: + name: GitHub + uses: fabasoad/reusable-workflows/.github/workflows/wf-github-release.yml@main diff --git a/.github/workflows/sync-labels.yml b/.github/workflows/sync-labels.yml new file mode 100644 index 0000000..42caa8b --- /dev/null +++ b/.github/workflows/sync-labels.yml @@ -0,0 +1,13 @@ +--- +name: Labels + +on: # yamllint disable-line rule:truthy + push: + branches: + - main + workflow_dispatch: {} + +jobs: + maintenance: + name: Maintenance + uses: fabasoad/reusable-workflows/.github/workflows/wf-sync-labels.yml@main diff --git a/.github/workflows/update-license.yml b/.github/workflows/update-license.yml index 58ee64a..77df7c0 100644 --- a/.github/workflows/update-license.yml +++ b/.github/workflows/update-license.yml @@ -1,28 +1,11 @@ --- -name: Update license +name: License on: # yamllint disable-line rule:truthy schedule: - cron: "0 5 1 1 *" jobs: - run: - runs-on: ubuntu-latest - steps: - - uses: actions/checkout@v4 - with: - fetch-depth: 0 - - uses: FantasticFiasco/action-update-license-year@v3 - with: - token: ${{ secrets.GITHUB_TOKEN }} - assignees: ${{ github.repository_owner }} - labels: enhancement - prTitle: Update license copyright year to {{currentYear}} - prBody: | - ## Changelog - - - Update license copyright year to {{currentYear}} - - --- - - Powered by [FantasticFiasco/action-update-license-year](https://github.com/FantasticFiasco/action-update-license-year) + maintenance: + name: Maintenance + uses: fabasoad/reusable-workflows/.github/workflows/wf-update-license.yml@main diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml index 7b9ec6f..8a9946c 100644 --- a/.pre-commit-config.yaml +++ b/.pre-commit-config.yaml @@ -6,16 +6,24 @@ minimum_pre_commit_version: 2.18.0 repos: # Security - repo: https://github.com/Yelp/detect-secrets - rev: v1.4.0 + rev: v1.5.0 hooks: - id: detect-secrets - repo: https://github.com/gitleaks/gitleaks - rev: v8.18.2 + rev: v8.18.4 hooks: - id: gitleaks + - repo: https://github.com/fabasoad/pre-commit-grype + rev: v0.3.1 + hooks: + - id: grype-dir + args: + - --grype-args=--by-cve --fail-on=low + - --hook-args=--log-level debug + stages: ["push"] # Markdown - repo: https://github.com/igorshubovych/markdownlint-cli - rev: v0.39.0 + rev: v0.41.0 hooks: - id: markdownlint-fix stages: ["commit"] @@ -27,11 +35,11 @@ repos: stages: ["push"] # GitHub Actions - repo: https://github.com/rhysd/actionlint - rev: v1.6.27 + rev: v1.7.1 hooks: - id: actionlint args: ["-pyflakes="] - stages: ["push"] + stages: ["commit"] # Other - repo: https://github.com/pre-commit/mirrors-prettier rev: v3.1.0