feat(config): Standardize CI/CD configurations via sync workflow

actions-user · actions-user · commit 58bc304bf12b · 2026-01-08T14:45:50.000Z
diff --git a/.deepsource.toml b/.deepsource.toml
@@ -0,0 +1,76 @@
+# .deepsource.toml (Place this in your source repo)
+version = 1
+
+# Enable all core analyzers provided by DeepSource
+[[analyzers]]
+name = "python"
+enabled = true
+
+[[analyzers]]
+name = "javascript"
+enabled = true
+
+[[analyzers]]
+name = "go"
+enabled = true
+
+[[analyzers]]
+name = "java"
+enabled = true
+
+[[analyzers]]
+name = "csharp"
+enabled = true
+
+[[analyzers]]
+name = "ruby"
+enabled = true
+
+[[analyzers]]
+name = "rust"
+enabled = true
+
+[[analyzers]]
+name = "kotlin"
+enabled = true
+
+[[analyzers]]
+name = "swift"
+enabled = true
+
+[[analyzers]]
+name = "scala"
+enabled = true
+
+[[analyzers]]
+name = "php"
+enabled = true
+
+[[analyzers]]
+name = "ansible"
+enabled = true
+
+[[analyzers]]
+name = "docker"
+enabled = true
+
+[[analyzers]]
+name = "terraform"
+enabled = true
+
+[[analyzers]]
+name = "secrets"
+enabled = true
+
+[[analyzers]]
+name = "shell"
+enabled = true
+
+[[analyzers]]
+name = "sql"
+enabled = true
+
+# You can also enable transformers (code formatters) if desired
+# [[transformers]]
+# name = "black"
+# enabled = true
diff --git a/.github/FUNDING.yml b/.github/FUNDING.yml
@@ -1,12 +1,15 @@
+# .github/FUNDING.yml
 # These are supported funding model platforms
 
-github: # Replace with up to 4 GitHub Sponsors-enabled usernames e.g., [user1, user2]
-patreon: # Replace with a single Patreon username
-open_collective: # Replace with a single Open Collective username
-ko_fi: # Replace with a single Ko-fi username
-tidelift: # Replace with a single Tidelift platform-name/package-name e.g., npm/babel
-community_bridge: # Replace with a single Community Bridge project-name e.g., cloud-foundry
-liberapay: # Replace with a single Liberapay username
-issuehunt: # Replace with a single IssueHunt username
-otechie: # Replace with a single Otechie username
-custom: ['https://www.paypal.me/bryanseah234']
+github: bryanseah234  # Your GitHub Sponsors username
+# patreon: # Your Patreon username
+# open_collective: # Your Open Collective username
+# ko_fi: # Your Ko-fi username
+# tidelift: # npm/package-name or pypi/package-name etc
+# community_bridge: # Project name on Community Bridge
+# liberapay: # Your Liberapay username
+# issuehunt: # Your IssueHunt username
+# lfx_crowdfunding: # Your LFX Crowdfunding project name
+# polar: # Your Polar username
+# buy_me_a_coffee: # Your Buy Me a Coffee username
+# custom: ["https://your-custom-link.com"]  # Up to 4 custom links
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -0,0 +1,109 @@
+version: 2
+updates:
+  # .NET SDK (global.json file)
+  - package-ecosystem: "dotnet-sdk"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Bun (bun.lockb, package.json files)
+  - package-ecosystem: "bun"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Bundler (Gemfile, Gemfile.lock files)
+  - package-ecosystem: "bundler"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Cargo (Cargo.toml, Cargo.lock files)
+  - package-ecosystem: "cargo"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Composer (composer.json, composer.lock files)
+  - package-ecosystem: "composer"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Conda (environment.yml file)
+  - package-ecosystem: "conda"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+      
+  # Dev containers (.devcontainer.json file)
+  - package-ecosystem: "devcontainers"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Docker (Dockerfile)
+  - package-ecosystem: "docker"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+      
+  # Docker Compose (docker-compose.yml file)
+  - package-ecosystem: "docker-compose"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # GitHub Actions workflows (.github/workflows/*.yml files)
+  - package-ecosystem: "github-actions"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Go modules (go.mod file)
+  - package-ecosystem: "gomod"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Gradle (build.gradle, build.gradle.kts files)
+  - package-ecosystem: "gradle"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Helm (Chart.yaml, values.yaml files)
+  - package-ecosystem: "helm"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Maven (pom.xml file)
+  - package-ecosystem: "maven"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # npm (package.json, package-lock.json files)
+  - package-ecosystem: "npm"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # NuGet (.nuspec, .csproj, etc. files)
+  - package-ecosystem: "nuget"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # pip (requirements.txt, Pipfile, setup.py files)
+  - package-ecosystem: "pip"
+    directory: "/" 
+    schedule:
+      interval: "daily"
+
+  # Terraform (.tf files)
+  - package-ecosystem: "terraform"
+    directory: "/" 
+    schedule:
+      interval: "daily"
diff --git a/.github/greetings.yml b/.github/greetings.yml
@@ -0,0 +1,36 @@
+# .github/greetings.yml
+# A comprehensive configuration for the actions/first-interaction action
+
+repo-token: ${{ secrets.GITHUB_TOKEN }}
+
+# Message for a first-time issue (fluff included!)
+issue-message: |
+  # 👋 Welcome, @${{ github.actor }}! 
+  
+  Thank you so much for opening your very first issue here in the **${{ github.repository }}** repository! 🚀
+  
+  We appreciate you taking the time to report this and help us improve our project. We're thrilled to have you as part of our community!
+  
+  A maintainer will review this issue as soon as possible and provide feedback. In the meantime, feel free to explore our [contribution guidelines](CONTRIBUTING.md) if you're interested in helping out further.
+  
+  Thanks again for your valuable contribution! :heart:
+
+# Label to apply to first-time issues
+issue-label: "first-time-contributor"
+
+# Message for a first-time pull request (extra fluff!)
+pr-message: |
+  # 🎉 A huge welcome, @${{ github.actor }}! 
+  
+  Congratulations on opening your first ever Pull Request with **${{ github.repository }}**! We're absolutely delighted to see your contribution.
+  
+  We truly appreciate the effort you've put into making this project better. Your support means a lot to us!
+  
+  Our team will start the review process shortly. Please be patient as we work through our review queue. 
+  
+  If you have any questions during the review process, don't hesitate to ask right here in the comments.
+  
+  Thanks again, and happy coding! :sparkles:
+
+# Label to apply to first-time pull requests
+pr-label: "first-time-contributor"
diff --git a/.github/labels.yml b/.github/labels.yml
@@ -0,0 +1,28 @@
+# .github/labels.yml
+# Example configuration for the labeler action
+
+documentation:
+  - 'docs/**/*'
+  - '*.md'
+
+backend:
+  - 'src/server/**/*'
+  - 'backend/**/*'
+
+frontend:
+  - 'src/client/**/*'
+  - 'frontend/**/*'
+  - 'ui/**/*'
+
+tests:
+  - '**/__tests__/**/*'
+  - 'tests/**/*'
+  - 'spec/**/*'
+
+bug:
+  - 'fix/*'
+  - 'bug/*'
+
+enhancement:
+  - 'feat/*'
+  - 'feature/*'
diff --git a/.github/workflows/greetings.yml b/.github/workflows/greetings.yml
@@ -1,13 +1,17 @@
-name: Greetings
+# .github/workflows/greetings.yml
+name: Greet New Contributors
 
-on: [pull_request, issues]
+on:
+  issues:
+    types: [opened]
+  pull_request:
+    types: [opened]
 
 jobs:
-  greeting:
+  greet:
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/first-interaction@v1
+    - uses: actions/first-interaction@v1.1.0
       with:
         repo-token: ${{ secrets.GITHUB_TOKEN }}
-        issue-message: 'Message that will be displayed on users'' first issue'
-        pr-message: 'Message that will be displayed on users'' first pr'
+        # The action automatically looks for .github/greetings.yml
diff --git a/.github/workflows/labeler.yml b/.github/workflows/labeler.yml
@@ -0,0 +1,17 @@
+# .github/workflows/labeler.yml
+name: "Pull Request Labeler"
+on:
+  pull_request_target: # This trigger is generally safer for labeler actions
+    types:
+      - opened
+      - reopened
+      - synchronize
+
+jobs:
+  label:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/labeler@v2
+        with:
+          repo-token: ${{ secrets.GITHUB_TOKEN }}
+          # The action automatically looks for .github/labels.yml by default
diff --git a/.github/workflows/trufflehog.yml b/.github/workflows/trufflehog.yml
@@ -0,0 +1,29 @@
+# .github/workflows/trufflehog.yml
+name: TruffleHog Secret Scan
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+
+jobs:
+  trufflehog:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: TruffleHog OSS
+        uses: trufflesecurity/trufflehog@main
+        with:
+          path: ./
+          base: ${{ github.event.repository.default_branch }}
+          head: HEAD
+          extra_args: --only-verified
+
+      - name: Check for secrets
+        if: failure()
+        run: echo "TruffleHog detected secrets. Please review and remove them." && exit 1
diff --git a/.sourcery.yml b/.sourcery.yml
@@ -0,0 +1,4 @@
+# .github/.sourcery.yaml
+# Sourcery configuration file
+# All basic analyzers are enabled by default for public repositories.
+# This file serves to acknowledge Sourcery configuration location.
