maid 0.11.0 → 0.11.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1c4204200ab04dcec0fad2cc364c70f9901b777f489ee2d3d1779e05d41e836a
-  data.tar.gz: 0bdd56e20b4439cd36df8beacf632a6d9432d66173c0202e2b3d772395ee8035
+  metadata.gz: b0e37d0f17194d3ab84ab03c7520c4a7d610da6a94d0b0da9eda781da477a9e4
+  data.tar.gz: 40b6bace47a3acc2946cc30dac5139fb389a564a223eaecfb079a615020110a5
 SHA512:
-  metadata.gz: d1e07b28f9f173f2954f53f343779298c51cabd3e3a3dae491a27d5dd0fccf17adb6a9edb7ef93556b225f68515f88af7d05d6db8ec81690dec8252b6a44b0a5
-  data.tar.gz: 1654a1358b0653902168abfe5113e45bafbfa44b9dcbfebb64d73daf79a2a3b7fdde2225ecfa54e0c39f762e4a1e0f0b42f60ee2f53afa77f1dd464928901ee8
+  metadata.gz: 2f4a77cfca1a267cb193f005a55f1d366b87b545d2385db9c845fade9ecfd8b57c276f4823018958ea1dd4de3ffd8d3ee5d28afea04a5e6d833e31d1e1933b49
+  data.tar.gz: b0e2db3844fd69f0cd94316eb8eede4243c8bc7499568bf5add17f7b7ed31f0cc723d0f448d75ce85a6f54ae1724acd79eebb5f41dc23342dee31b522e87c858

data/.commitlintrc.json

@@ -0,0 +1,7 @@
+{
+  "extends": ["@commitlint/config-conventional"],
+  "rules": {
+    "body-max-line-length": [0, "always", 100],
+    "subject-case": [2, "always", "sentence-case"]
+  }
+}

data/.github/workflows/{coverage.yml → coverage-upload.yml}

@@ -1,25 +1,27 @@
-name: Code coverage
+permissions:
+  contents: read
+name: Upload coverage to Code Climate
 
 on:
   push:
     branches:
       - master
-  pull_request:
-    branches:
-      - master
 
 jobs:
-  code-climate:
+  upload-coverage:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
+
       - name: Set up Ruby
         uses: ruby/setup-ruby@v1
         with:
           bundler-cache: true
+
       - name: Install dependencies
         run: bundle install
-      - name: Publish code coverage
+
+      - name: Upload coverage to Code Climate
         uses: paambaati/codeclimate-action@v3.2.0
         with:
           coverageCommand: bundle exec rake

data/.github/workflows/lint.yml

@@ -1,3 +1,5 @@
+permissions:
+  contents: read
 name: Lint
 
 on:
@@ -9,6 +11,22 @@ on:
       - master
 
 jobs:
+  commitlint:
+    runs-on: ubuntu-latest
+    if: github.event_name == 'push'
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Setup Node.js
+        uses: actions/setup-node@v3
+        with:
+          node-version: "lts/*"
+      - name: Install commitlint
+        run: npm install -g @commitlint/config-conventional @commitlint/cli
+      - name: Validate current commit (push)
+        run: echo "${{ github.event.head_commit.message }}" | commitlint
+
   rubocop:
     runs-on: ubuntu-latest
     steps:
@@ -30,3 +48,17 @@ jobs:
         run: sudo apt install shellcheck -y
       - name: Run shellcheck
         run: shellcheck -x script/*
+
+  pr-title-lint:
+    runs-on: ubuntu-latest
+    if: github.event_name == 'pull_request'
+    steps:
+      - uses: actions/checkout@v4
+      - name: Setup Node.js
+        uses: actions/setup-node@v3
+        with:
+          node-version: "lts/*"
+      - name: Install commitlint
+        run: npm install -g @commitlint/config-conventional @commitlint/cli
+      - name: Validate PR title
+        run: echo "${{ github.event.pull_request.title }}" | commitlint

data/.github/workflows/release.yml

@@ -10,46 +10,50 @@ permissions:
   pull-requests: write
 
 jobs:
-  release-please:
+  release:
+    name: Release
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-      - name: Prepare release
-        id: release
-        uses: googleapis/release-please-action@v4
+      - name: Checkout
+        uses: actions/checkout@v4
         with:
-          # Don't use GITHUB_TOKEN because this doesn't allow workflows to
-          # trigger workflows; it leave the `release-please`-generated PR with
-          # pending checks as they're never started.
-          token: ${{ secrets.BOT_GH_TOKEN }}
-          config-file: release-please-config.json
-          manifest-file: .release-please-manifest.json
-
-      - name: Set up Ruby
+          fetch-depth: 0
+          persist-credentials: false
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v3
+        with:
+          node-version: "lts/*"
+
+      - name: Setup Ruby
         uses: ruby/setup-ruby@v1
         with:
           # ruby-version derived from .ruby-version file
           bundler-cache: true
-        if: ${{ steps.release.outputs.release_created }}
 
       - name: Install dependencies
-        run: bundle install
-        if: ${{ steps.release.outputs.release_created }}
+        run: |
+          npm install -g semantic-release @semantic-release/changelog @semantic-release/git @semantic-release/exec
+          bundle install
 
       - name: Run tests
         run: bundle exec rake
         env:
           ISOLATED: true
-        if: ${{ steps.release.outputs.release_created }}
 
-      - name: Publish gem
+      - name: Configure gem credentials
         run: |
+          echo "::add-mask::$GEM_HOST_API_KEY"
           mkdir -p $HOME/.gem
           touch $HOME/.gem/credentials
           chmod 0600 $HOME/.gem/credentials
-          printf -- "---\n:rubygems_api_key: ${GEM_HOST_API_KEY}\n" > $HOME/.gem/credentials
-          gem build *.gemspec
-          gem push *.gem
+          printf -- "---\n:rubygems_api_key: %s\n" "$GEM_HOST_API_KEY" > $HOME/.gem/credentials
         env:
           GEM_HOST_API_KEY: ${{ secrets.RUBYGEMS_AUTH_TOKEN }}
-        if: ${{ steps.release.outputs.release_created }}
+
+      - name: Release
+        id: semantic_release
+        env:
+          GITHUB_TOKEN: ${{ secrets.BOT_GH_TOKEN }}
+        run: |
+          npx semantic-release

data/.github/workflows/stale.yml

@@ -5,6 +5,9 @@ on:
 
 jobs:
   stale:
+    permissions:
+      issues: write
+      pull-requests: write
     runs-on: ubuntu-latest
     steps:
       - uses: actions/stale@v8

data/.github/workflows/test.yml

@@ -1,3 +1,5 @@
+permissions:
+  contents: read
 name: Test
 
 on:
@@ -13,8 +15,8 @@ jobs:
     strategy:
       matrix:
         os:
-          - ubuntu-20.04
           - ubuntu-22.04
+          - ubuntu-24.04
           - macos-14
           - macos-15
         ruby-version:

data/.releaserc.json

@@ -0,0 +1,34 @@
+{
+  "branches": [
+    "master"
+  ],
+  "plugins": [
+    "@semantic-release/commit-analyzer",
+    "@semantic-release/release-notes-generator",
+    [
+      "@semantic-release/changelog",
+      {
+        "changelogFile": "CHANGELOG.md"
+      }
+    ],
+    [
+      "@semantic-release/exec",
+      {
+        "prepareCmd": "ruby script/update-version.rb ${nextRelease.version}",
+        "publishCmd": "gem build *.gemspec && gem push *.gem"
+      }
+    ],
+    [
+      "@semantic-release/git",
+      {
+        "assets": [
+          "CHANGELOG.md",
+          "lib/maid/version.rb",
+          "Gemfile.lock"
+        ],
+        "message": "chore(release): ${nextRelease.version} [skip ci]\n\n${nextRelease.notes}"
+      }
+    ],
+    "@semantic-release/github"
+  ]
+}

data/AUTHORS.md

@@ -6,6 +6,7 @@ In alphabetical order:
 * Graham Siener (@gsiener)
 * Itsuki Kurokawa (@fanalis)
 * Jayson Rhynas (@jayrhynas)
+* Joe Francis (@lostapathy)
 * John Colvin (@JohnColvin)
 * Jurriaan Pruis (@jurriaan)
 * Justin Hileman (@bobthecow)

data/CHANGELOG.md

@@ -1,3 +1,10 @@
+## [0.11.1](https://github.com/maid/maid/compare/v0.11.0...v0.11.1) (2025-08-16)
+
+
+### Bug Fixes
+
+* **thor:** Upgrade thor to fix vulnerability (ref: ef87ff8) ([24402df](https://github.com/maid/maid/commit/24402df3121ac0b50da3cd51ed07144e30f55c5d))
+
 # Changelog
 
 ## [0.11.0](https://github.com/maid/maid/compare/maid-v0.10.0...maid/v0.11.0) (2025-03-30)

data/CONTRIBUTING.md

@@ -1,3 +1,18 @@
 This project is hosted on GitHub.  To obtain a copy of the source, visit https://github.com/benjaminoakes/maid.
 
 For contributing guidelines, please see https://github.com/benjaminoakes/maid/wiki/Contributing
+
+## Commit Message Format
+
+This project uses [Conventional Commits](https://www.conventionalcommits.org/) for commit messages:
+
+- `fix:` a commit that fixes a bug
+- `feat:` a commit that adds new functionality
+- `docs:` documentation changes
+- `style:` formatting changes
+- `refactor:` code change that neither fixes a bug nor adds a feature
+- `perf:` performance improvements
+- `test:` adding or updating tests
+- `chore:` updating build tasks, package manager configs, etc.
+
+Breaking changes should be noted in the commit message with `BREAKING CHANGE:`.

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    maid (0.11.0)
+    maid (0.11.1)
       deprecated (~> 3.0.0)
       dimensions (>= 1.0.0, < 2.0)
       escape (>= 0.0.1, < 0.1.0)
@@ -11,7 +11,7 @@ PATH
       mime-types (~> 3.0, < 4.0)
       rubyzip (~> 2.3.2)
       rufus-scheduler (~> 3.8.2)
-      thor (~> 1.2.1)
+      thor (~> 1.4.0)
       xdg (~> 2.2.3)
 
 GEM
@@ -26,6 +26,7 @@ GEM
     coderay (1.1.3)
     colored (1.2)
     concurrent-ruby (1.3.5)
+    conventional-changelog (1.3.0)
     crack (1.0.0)
       bigdecimal
       rexml
@@ -168,6 +169,7 @@ GEM
     rubyzip (2.3.2)
     rufus-scheduler (3.8.2)
       fugit (~> 1.1, >= 1.1.6)
+    semantic_release (1.0.1)
     shellany (0.0.1)
     simplecov (0.22.0)
       docile (~> 1.1)
@@ -176,7 +178,7 @@ GEM
     simplecov-html (0.13.1)
     simplecov_json_formatter (0.1.4)
     stringio (3.1.6)
-    thor (1.2.2)
+    thor (1.4.0)
     timecop (0.9.10)
     tzinfo (2.0.6)
       concurrent-ruby (~> 1.0)
@@ -196,6 +198,7 @@ PLATFORMS
   x86_64-linux
 
 DEPENDENCIES
+  conventional-changelog (~> 1.3.0)
   fakefs (~> 2.4.0)
   fuubar (~> 2.5.1)
   guard (~> 2.18.0)
@@ -216,6 +219,7 @@ DEPENDENCIES
   rubocop (~> 1.50)
   rubocop-rake (~> 0.6.0)
   rubocop-rspec (~> 3.5.0)
+  semantic_release (~> 1.0.0)
   simplecov (~> 0.22.0)
   timecop (~> 0.9.6)
   vcr (~> 6.1.0)

data/lib/maid/version.rb

@@ -1,7 +1,7 @@
 # frozen_string_literal: true
 
 module Maid
-  VERSION = '0.11.0'
+  VERSION = '0.11.1'
   SUMMARY = 'Be lazy. Let Maid clean up after you, based on rules you define. ' \
             'Think of it as "Hazel for hackers".'
 end

data/maid.gemspec

@@ -7,10 +7,10 @@ Gem::Specification.new do |s|
   s.platform    = Gem::Platform::RUBY
   s.authors     = ['Benjamin Oakes', 'Coaxial']
   s.email       = ['hello@benjaminoakes.com', 'c+rubygems@64b.it']
-  s.license     = 'GPL-2.0'
+  s.license     = 'GPL-2.0-only'
   s.homepage    = 'http://github.com/maid/maid'
-  s.summary     = Maid::SUMMARY
-  s.description = s.summary
+  s.summary     = 'Keep your filesystem clean by running custom rules periodically'
+  s.description = Maid::SUMMARY
   s.files       = Dir['lib/**/*.rb'] + Dir['bin/maid']
   s.metadata    = {
     'bug_tracker_uri' => 'https://github.com/maid/maid/issues',
@@ -21,8 +21,6 @@ Gem::Specification.new do |s|
     'rubygems_mfa_required' => 'true',
   }
 
-  s.rubyforge_project = 'maid'
-
   s.required_ruby_version = '>= 3.2.0'
 
   # Strategy: if possible, use ranges (so there are fewer chances of version conflicts)
@@ -36,7 +34,7 @@ Gem::Specification.new do |s|
   s.add_dependency('mime-types', '~> 3.0', '< 4.0')
   s.add_dependency('rubyzip', '~> 2.3.2')
   s.add_dependency('rufus-scheduler', '~> 3.8.2')
-  s.add_dependency('thor', '~> 1.2.1')
+  s.add_dependency('thor', '~> 1.4.0')
   s.add_dependency('xdg', '~> 2.2.3') # previous versions had bugs
 
   # TODO: use one of these two gems instead of `mdfind`.  **But** They have to work on Linux as well.
@@ -45,6 +43,7 @@ Gem::Specification.new do |s|
   #     s.add_dependency('spotlight', '~> 0.0.6')
 
   # Strategy: specific versions (since they're just for development)
+  s.add_development_dependency('conventional-changelog', '~> 1.3.0')
   s.add_development_dependency('fakefs', '~> 2.4.0')
   s.add_development_dependency('fuubar', '~> 2.5.1')
   s.add_development_dependency('guard', '~> 2.18.0')
@@ -62,6 +61,7 @@ Gem::Specification.new do |s|
   s.add_development_dependency('rubocop', '~> 1.50')
   s.add_development_dependency('rubocop-rake', '~> 0.6.0')
   s.add_development_dependency('rubocop-rspec', '~> 3.5.0')
+  s.add_development_dependency('semantic_release', '~> 1.0.0')
   s.add_development_dependency('simplecov', '~> 0.22.0')
   s.add_development_dependency('timecop', '~> 0.9.6')
   s.add_development_dependency('vcr', '~> 6.1.0')

data/script/update-version.rb

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+# shellcheck disable=SC1071
+# Shellcheck doesn't do ruby
+version = ARGV[0]
+version_file = 'lib/maid/version.rb'
+gemfile_lock = 'Gemfile.lock'
+
+content_version = File.read(version_file)
+updated_version = content_version.gsub(/VERSION *= *['"].*?['"]/, "VERSION = '#{version}'")
+File.write(version_file, updated_version)
+
+content_gemfile = File.read(gemfile_lock)
+updated_gemfile = content_gemfile.gsub(/    maid (.*)/, "    maid (#{version})")
+File.write(gemfile_lock, updated_gemfile)

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: maid
 version: !ruby/object:Gem::Version
-  version: 0.11.0
+  version: 0.11.1
 platform: ruby
 authors:
 - Benjamin Oakes
 - Coaxial
 bindir: bin
 cert_chain: []
-date: 2025-03-30 00:00:00.000000000 Z
+date: 2025-08-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: deprecated
@@ -160,14 +160,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.2.1
+        version: 1.4.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.2.1
+        version: 1.4.0
 - !ruby/object:Gem::Dependency
   name: xdg
   requirement: !ruby/object:Gem::Requirement
@@ -182,6 +182,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: 2.2.3
+- !ruby/object:Gem::Dependency
+  name: conventional-changelog
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.3.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.3.0
 - !ruby/object:Gem::Dependency
   name: fakefs
   requirement: !ruby/object:Gem::Requirement
@@ -420,6 +434,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: 3.5.0
+- !ruby/object:Gem::Dependency
+  name: semantic_release
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.0.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.0.0
 - !ruby/object:Gem::Dependency
   name: simplecov
   requirement: !ruby/object:Gem::Requirement
@@ -530,17 +558,18 @@ extra_rdoc_files: []
 files:
 - ".act-env"
 - ".act-secrets.example"
+- ".commitlintrc.json"
 - ".github/FUNDING.yml"
 - ".github/ISSUE_TEMPLATE/bug_report.md"
 - ".github/ISSUE_TEMPLATE/feature_request.md"
-- ".github/workflows/coverage.yml"
+- ".github/workflows/coverage-upload.yml"
 - ".github/workflows/lint.yml"
 - ".github/workflows/merge-gatekeeper.yml"
 - ".github/workflows/release.yml"
 - ".github/workflows/stale.yml"
 - ".github/workflows/test.yml"
 - ".gitignore"
-- ".release-please-manifest.json"
+- ".releaserc.json"
 - ".rspec"
 - ".rubocop.yml"
 - ".rubocop_todo.yml"
@@ -582,13 +611,13 @@ files:
 - lib/maid/version.rb
 - lib/maid/watch.rb
 - maid.gemspec
-- release-please-config.json
 - resources/OneThingWell.png
 - resources/download-for-ubuntu.png
 - resources/hacker-news.png
 - resources/ruby5.gif
 - script/docker-test
 - script/smoke-test
+- script/update-version.rb
 - spec/dependency_spec.rb
 - spec/fakefs_helper.rb
 - spec/fixtures/files/1.zip
@@ -613,7 +642,7 @@ files:
 - spec/spec_helper.rb
 homepage: http://github.com/maid/maid
 licenses:
-- GPL-2.0
+- GPL-2.0-only
 metadata:
   bug_tracker_uri: https://github.com/maid/maid/issues
   changelog_uri: https://github.com/maid/maid/blob/master/CHANGELOG.md
@@ -639,6 +668,5 @@ required_rubygems_version: !ruby/object:Gem::Requirement
 requirements: []
 rubygems_version: 3.6.2
 specification_version: 4
-summary: Be lazy. Let Maid clean up after you, based on rules you define. Think of
-  it as "Hazel for hackers".
+summary: Keep your filesystem clean by running custom rules periodically
 test_files: []

data/.release-please-manifest.json

@@ -1,3 +0,0 @@
-{
-  ".": "0.11.0"
-}

data/release-please-config.json

@@ -1,18 +0,0 @@
-{
-  "always-update": true,
-  "bootstrap-sha": "d4901ad446c8a614ef80472ed5e6f1ba8c702ed5",
-  "bump-minor-pre-major": true,
-  "bump-patch-for-minor-pre-major": true,
-  "commit-search-depth": 500,
-  "group-pull-request-title-pattern": "chore: release ${version}",
-  "release-search-depth": 400,
-  "release-type": "ruby",
-  "sequential-calls": false,
-  "packages": {
-    ".": {
-      "release-type": "ruby",
-      "package-name": "maid",
-      "version-file": "lib/maid/version.rb"
-    }
-  }
-}