chore(ci): batch all dependabot PR's

[hutchic]

No description provided.

[hutchic]

Template Repository Sync Report

Found 10 files to update in 1 repositories

temp

.releaserc

--- .releaserc
+++ .releaserc
@@ -0,0 +1,45 @@
+{
+  "branches": ["main"],
+  "tagFormat": "${version}",
+  "repositoryUrl": "https://github.com/hutchic-org/template-ghcr-release.git",
+  "plugins": [
+    [
+      "@semantic-release/commit-analyzer",
+      {
+        "preset": "conventionalcommits",
+        "releaseRules": [
+          { "breaking": true, "release": "major" },
+          { "revert": true, "release": "patch" },
+          { "type": "build", "release": "patch" },
+          { "type": "docs", "release": "patch" },
+          { "type": "feat", "release": "minor" },
+          { "type": "fix", "release": "patch" },
+          { "type": "perf", "release": "patch" },
+          { "type": "refactor", "release": "patch" },
+          { "type": "chore", "release": "patch" }
+        ]
+      }
+    ],
+    [
+      "@semantic-release/release-notes-generator",
+      {
+        "preset": "conventionalcommits",
+        "presetConfig": {
+          "types": [
+            { "type": "build", "section": "Build", "hidden": false },
+            { "type": "chore", "section": "Chores", "hidden": false },
+            { "type": "ci", "section": "CI/CD", "hidden": false },
+            { "type": "docs", "section": "Docs", "hidden": false },
+            { "type": "feat", "section": "Features", "hidden": false },
+            { "type": "fix", "section": "Bug Fixes", "hidden": false },
+            { "type": "perf", "section": "Performance", "hidden": false },
+            { "type": "refactor", "section": "Refactor", "hidden": false },
+            { "type": "style", "section": "Code Style", "hidden": false },
+            { "type": "test", "section": "Tests", "hidden": false }
+          ]
+        }
+      }
+    ],
+    "@semantic-release/github",
+  ]
+}

.github/labeler.yml

--- .github/labeler.yml
+++ .github/labeler.yml
@@ -0,0 +1,9 @@
+---
+csv:
+- '**/*.csv'
+docs:
+- '**/*.md'
+github_actions:
+- .github/**
+python:
+- '**/*.py'

.github/pr-labeler.yml

--- .github/pr-labeler.yml
+++ .github/pr-labeler.yml
@@ -0,0 +1,3 @@
+---
+bug: [bug/*, fix/*]
+feature: [feature/*, feat/*]

.github/settings.yml

--- .github/settings.yml
+++ .github/settings.yml
@@ -0,0 +1,142 @@
+# These settings are synced to GitHub by https://probot.github.io/apps/settings/
+
+repository:
+  # See https://docs.github.com/en/rest/reference/repos#update-a-repository for all available settings.
+
+  # The name of the repository. Changing this will rename the repository
+  # name: repo-name
+
+  # A short description of the repository that will show up on GitHub
+  # description: description of repo
+
+  # A URL with more information about the repository
+  # homepage: https://example.github.io/
+
+  # A comma-separated list of topics to set on the repository
+  # topics: github, probot
+
+  # Either `true` to make the repository private, or `false` to make it public.
+  private: false
+
+  # Either `true` to enable issues for this repository, `false` to disable them.
+  has_issues: false
+
+  # Either `true` to enable projects for this repository, or `false` to disable them.
+  # If projects are disabled for the organization, passing `true` will cause an API error.
+  has_projects: false
+
+  # Either `true` to enable the wiki for this repository, `false` to disable it.
+  has_wiki: false
+
+  # Either `true` to enable downloads for this repository, `false` to disable them.
+  has_downloads: true
+
+  # Updates the default branch for this repository.
+  default_branch: main
+
+  # Either `true` to allow squash-merging pull requests, or `false` to prevent
+  # squash-merging.
+  allow_squash_merge: true
+
+  # Either `true` to allow merging pull requests with a merge commit, or `false`
+  # to prevent merging pull requests with merge commits.
+  allow_merge_commit: false
+
+  # Either `true` to allow rebase-merging pull requests, or `false` to prevent
+  # rebase-merging.
+  allow_rebase_merge: true
+
+  # Either `true` to enable automatic deletion of branches on merge, or `false` to disable
+  delete_branch_on_merge: true
+
+  # Either `true` to enable automated security fixes, or `false` to disable
+  # automated security fixes.
+  enable_automated_security_fixes: true
+
+  # Either `true` to enable vulnerability alerts, or `false` to disable
+  # vulnerability alerts.
+  enable_vulnerability_alerts: true
+
+# Labels: define labels for Issues and Pull Requests
+# labels:
+#  - name: bug
+#    color: CC0000
+#    description: An issue with the system 🐛.
+
+#  - name: feature
+    # If including a `#`, make sure to wrap it with quotes!
+#    color: '#336699'
+#    description: New functionality.
+
+#  - name: Help Wanted
+    # Provide a new name to rename an existing label
+#    new_name: first-timers-only
+
+# Milestones: define milestones for Issues and Pull Requests
+# milestones:
+#  - title: milestone-title
+#    description: milestone-description
+    # The state of the milestone. Either `open` or `closed`
+#    state: open
+
+# Collaborators: give specific users access to this repository.
+# See https://docs.github.com/en/rest/reference/repos#add-a-repository-collaborator for available options
+# collaborators:
+  # - username: bkeepers
+  #   permission: push
+  # - username: hubot
+  #   permission: pull
+
+  # Note: `permission` is only valid on organization-owned repositories.
+  # The permission to grant the collaborator. Can be one of:
+  # * `pull` - can pull, but not push to or administer this repository.
+  # * `push` - can pull and push, but not administer this repository.
+  # * `admin` - can pull, push and administer this repository.
+  # * `maintain` - Recommended for project managers who need to manage the repository without access to sensitive or destructive actions.
+  # * `triage` - Recommended for contributors who need to proactively manage issues and pull requests without write access.
+
+# See https://docs.github.com/en/rest/reference/teams#add-or-update-team-repository-permissions for available options
+# teams:
+#  - name: core
+    # The permission to grant the team. Can be one of:
+    # * `pull` - can pull, but not push to or administer this repository.
+    # * `push` - can pull and push, but not administer this repository.
+    # * `admin` - can pull, push and administer this repository.
+    # * `maintain` - Recommended for project managers who need to manage the repository without access to sensitive or destructive actions.
+    # * `triage` - Recommended for contributors who need to proactively manage issues and pull requests without write access.
+#    permission: admin
+#  - name: docs
+#    permission: push
+
+branches:
+  - name: main
+    # https://docs.github.com/en/rest/reference/repos#update-branch-protection
+    # Branch Protection settings. Set to null to disable
+    protection:
+      # Required. Require at least one approving review on a pull request, before merging. Set to null to disable.
+      required_pull_request_reviews: null
+        # The number of approvals required. (1-6)
+#        required_approving_review_count: 1
+        # Dismiss approved reviews automatically when a new commit is pushed.
+#        dismiss_stale_reviews: true
+        # Blocks merge until code owners have reviewed.
+#        require_code_owner_reviews: true
+        # Specify which users and teams can dismiss pull request reviews. Pass an empty dismissal_restrictions object to disable. User and team dismissal_restrictions are only available for organization-owned repositories. Omit this parameter for personal repositories.
+#        dismissal_restrictions:
+#          users: []
+#          teams: []
+      # Required. Require status checks to pass before merging. Set to null to disable
+      required_status_checks:
+        # Required. Require branches to be up to date before merging.
+        strict: true
+        # Required. The list of status checks to require in order to merge into this branch
+        contexts: [pre-commit, sync, release]
+      # Required. Enforce all configured restrictions for administrators. Set to true to enforce required status checks for repository administrators. Set to null to disable.
+      enforce_admins: null
+      # Prevent merge commits from being pushed to matching branches
+      required_linear_history: true
+      # Required. Restrict who can push to this branch. Team and user restrictions are only available for organization-owned repositories. Set to null to disable.
+      restrictions: null
+#        apps: []
+#        users: []
+#        teams: []

.github/workflows/automerge.yml

--- .github/workflows/automerge.yml
+++ .github/workflows/automerge.yml
@@ -0,0 +1,31 @@
+---
+# This file is sync'd from https://github.com/hutchic-org/template-template
+# Do not edit this file from anywhere else but that repository it will be overwritten
+name: Auto Actions
+
+on: pull_request_target # yamllint disable-line rule:truthy
+
+permissions:
+  contents: write
+  pull-requests: write
+
+jobs:
+  dependabot-automerge:
+    runs-on: ubuntu-latest
+    if: ${{ github.actor == 'dependabot[bot]' }}
+    steps:
+    - name: Gather Dependabot metadata
+      id: metadata
+      uses: dependabot/[email protected]
+      with:
+        github-token: ${{ secrets.GITHUB_TOKEN }}
+    - name: Approve PR
+      run: gh pr review --approve "$PR_URL"
+      env:
+        PR_URL: ${{github.event.pull_request.html_url}}
+        GITHUB_TOKEN: ${{secrets.AUTO_MERGE_TOKEN}}
+    - name: Enable auto-merge
+      run: gh pr merge --auto --squash "$PR_URL"
+      env:
+        PR_URL: ${{github.event.pull_request.html_url}}
+        GITHUB_TOKEN: ${{secrets.AUTO_MERGE_TOKEN}}

.github/workflows/autoupdate.yml

--- .github/workflows/autoupdate.yml
+++ .github/workflows/autoupdate.yml
@@ -0,0 +1,22 @@
+---
+# This file is sync'd from https://github.com/hutchic-org/template-template
+# Do not edit this file from anywhere else but that repository it will be overwritten
+name: Auto update PR's
+
+on: # yamllint disable-line rule:truthy
+  push:
+    branches:
+      - 'main'
+jobs:
+  autoupdate:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Automatically update PR
+        uses: adRise/[email protected]
+        with:
+          token: ${{ secrets.AUTO_MERGE_TOKEN }}
+          base: 'main'
+          required_approval_count: 0
+          require_passed_checks: true
+          sort: 'created'
+          direction: 'desc'

.github/workflows/labeller.yml

--- .github/workflows/labeller.yml
+++ .github/workflows/labeller.yml
@@ -0,0 +1,18 @@
+---
+name: Pull Request Labeler
+
+on: [pull_request] # yamllint disable-line rule:truthy
+
+jobs:
+  label:
+    name: auto label
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/labeler@v5
+      continue-on-error: true
+      with:
+        repo-token: ${{ secrets.AUTO_MERGE_TOKEN }}
+    - uses: TimonVS/[email protected]
+      continue-on-error: true
+      env:
+        GITHUB_TOKEN: ${{ secrets.AUTO_MERGE_TOKEN }}

.github/workflows/pre-commit.yml

--- .github/workflows/pre-commit.yml
+++ .github/workflows/pre-commit.yml
@@ -0,0 +1,27 @@
+---
+name: pre-commit
+
+on:  # yamllint disable-line rule:truthy
+  pull_request:
+
+jobs:
+  lint-pr-title:
+    name: Validate PR titles
+    runs-on: ubuntu-latest
+    if: ${{ github.actor != 'pull[bot]' }}
+    steps:
+    - run: echo "$github.actor"
+    - uses: amannn/[email protected]
+      env:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+  pre-commit:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/[email protected]
+    - uses: actions/[email protected]
+      with:
+        python-version: '3.8'
+    - run: pip install 'virtualenv<20.11.0'
+    - uses: pre-commit/[email protected]
+      with:
+        token: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/release.yml

--- .github/workflows/release.yml
+++ .github/workflows/release.yml
@@ -0,0 +1,66 @@
+name: Release
+
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+  pull_request:
+    branches:
+      - main
+
+permissions:
+  packages: write
+  contents: write
+  pull-requests: write
+  issues: write
+
+jobs:
+  release:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+
+    - name: Setup Docker Buildx
+      uses: docker/setup-buildx-action@v3
+
+    - name: Login to GitHub Container Registry
+      uses: docker/login-action@v3
+      with:
+        registry: ghcr.io
+        username: ${{ github.actor }}
+        password: ${{ secrets.GITHUB_TOKEN }}
+
+    - name: Github Release
+      id: release
+      uses: ahmadnassri/[email protected]
+      env:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+    - name: Set Docker tags
+      id: set_tags
+      run: |
+        if [ "${{ steps.release.outputs.release-version }}" != "" ]; then
+          echo "TAGS=type=raw,value=latest,type=sha,type=semver,pattern={{version}},value=${{ steps.release.outputs.release-version }}" >> $GITHUB_ENV
+        else
+          echo "TAGS=type=raw,value=latest,type=sha" >> $GITHUB_ENV
+        fi
+
+    - name: Docker meta
+      id: meta
+      uses: docker/metadata-action@v5
+      with:
+        images: ghcr.io/hutchic-org/${{ github.event.repository.name }}
+        tags: ${{ env.TAGS }}
+
+    - name: Build and Push Docker image
+      if: ${{ steps.release.outputs.release-version != '' && github.event_name == 'push' && github.ref == 'refs/heads/main' }}
+      uses: docker/build-push-action@v5
+      with:
+        context: ./
+        push: true
+        tags: ${{ steps.meta.outputs.tags }}
+        labels: ${{ steps.meta.outputs.labels }}
+        cache-from: type=gha,ref=ghcr.io/hutchic-org/${{ github.event.repository.name }}
+        cache-to: type=gha,mode=max

.github/workflows/sync.yml

--- .github/workflows/sync.yml
+++ .github/workflows/sync.yml
@@ -0,0 +1,21 @@
+---
+name: Sync the template repository
+
+on: # yamllint disable-line rule:truthy
+  pull_request:
+  push:
+    branches: main
+
+jobs:
+  sync:
+    runs-on: ubuntu-latest
+
+    steps:
+    - name: Queue
+      uses: ahmadnassri/[email protected]
+    - name: Checkout
+      uses: actions/[email protected]
+    - name: Sync
+      uses: ahmadnassri/[email protected]
+      with:
+        github-token: ${{ secrets.GH_TOKEN }}

[github-actions]

🎉 This PR is included in version 1.0.19 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀