@hivehub/rulebook 5.4.0 → 5.5.0

package/templates/workflows/go-publish.yml

@@ -1,95 +1,95 @@
-name: Publish Go Module
-
-on:
-  release:
-    types: [published]
-  workflow_dispatch:
-    inputs:
-      tag:
-        description: 'Tag to publish (e.g., v1.0.0)'
-        required: true
-
-jobs:
-  publish:
-    runs-on: ubuntu-latest
-    
-    steps:
-    - uses: actions/checkout@v5
-      with:
-        ref: ${{ github.event.inputs.tag || github.ref }}
-        fetch-depth: 0  # Full history for Go modules
-    
-    - name: Set up Go
-      uses: actions/setup-go@v5
-      with:
-        go-version: '1.22'
-        cache: true
-    
-    - name: Verify go.mod
-      run: |
-        if [ ! -f go.mod ]; then
-          echo "Error: go.mod not found"
-          exit 1
-        fi
-        go mod verify
-    
-    - name: Download dependencies
-      run: go mod download
-    
-    - name: Run tests
-      run: go test -v -race -coverprofile=coverage.out ./...
-    
-    - name: Run linters
-      run: |
-        go vet ./...
-        go fmt ./...
-        if [ -n "$(gofmt -l .)" ]; then
-          echo "Go files must be formatted with gofmt"
-          exit 1
-        fi
-    
-    - name: Build
-      run: go build -v ./...
-    
-    - name: Verify tag format
-      run: |
-        TAG="${{ github.event.inputs.tag || github.ref_name }}"
-        if [[ ! "$TAG" =~ ^v[0-9]+\.[0-9]+\.[0-9]+(-[a-zA-Z0-9.]+)?$ ]]; then
-          echo "Error: Tag must follow semantic versioning (e.g., v1.0.0)"
-          exit 1
-        fi
-        echo "Tag format valid: $TAG"
-    
-    - name: Push tag (if workflow_dispatch)
-      if: github.event_name == 'workflow_dispatch'
-      run: |
-        TAG="${{ github.event.inputs.tag }}"
-        git tag -a "$TAG" -m "Release $TAG"
-        git push origin "$TAG"
-    
-    - name: Trigger pkg.go.dev update
-      run: |
-        TAG="${{ github.event.inputs.tag || github.ref_name }}"
-        MODULE=$(go list -m)
-        echo "Module: $MODULE"
-        echo "Version: $TAG"
-        
-        # pkg.go.dev automatically indexes new tags
-        # Trigger manual update if needed
-        curl -X POST "https://proxy.golang.org/$MODULE/@v/$TAG.info" || true
-        
-        echo "Published $MODULE@$TAG"
-        echo "View at: https://pkg.go.dev/$MODULE@$TAG"
-    
-    - name: Create GOPROXY cache entry
-      run: |
-        TAG="${{ github.event.inputs.tag || github.ref_name }}"
-        MODULE=$(go list -m)
-        
-        # Warm up various proxies
-        curl -f "https://proxy.golang.org/$MODULE/@v/$TAG.info" || true
-        curl -f "https://proxy.golang.org/$MODULE/@v/$TAG.mod" || true
-        curl -f "https://proxy.golang.org/$MODULE/@v/$TAG.zip" || true
-        
-        echo "GOPROXY cache warmed for $MODULE@$TAG"
-
+name: Publish Go Module
+
+on:
+  release:
+    types: [published]
+  workflow_dispatch:
+    inputs:
+      tag:
+        description: 'Tag to publish (e.g., v1.0.0)'
+        required: true
+
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    
+    steps:
+    - uses: actions/checkout@v5
+      with:
+        ref: ${{ github.event.inputs.tag || github.ref }}
+        fetch-depth: 0  # Full history for Go modules
+    
+    - name: Set up Go
+      uses: actions/setup-go@v5
+      with:
+        go-version: '1.22'
+        cache: true
+    
+    - name: Verify go.mod
+      run: |
+        if [ ! -f go.mod ]; then
+          echo "Error: go.mod not found"
+          exit 1
+        fi
+        go mod verify
+    
+    - name: Download dependencies
+      run: go mod download
+    
+    - name: Run tests
+      run: go test -v -race -coverprofile=coverage.out ./...
+    
+    - name: Run linters
+      run: |
+        go vet ./...
+        go fmt ./...
+        if [ -n "$(gofmt -l .)" ]; then
+          echo "Go files must be formatted with gofmt"
+          exit 1
+        fi
+    
+    - name: Build
+      run: go build -v ./...
+    
+    - name: Verify tag format
+      run: |
+        TAG="${{ github.event.inputs.tag || github.ref_name }}"
+        if [[ ! "$TAG" =~ ^v[0-9]+\.[0-9]+\.[0-9]+(-[a-zA-Z0-9.]+)?$ ]]; then
+          echo "Error: Tag must follow semantic versioning (e.g., v1.0.0)"
+          exit 1
+        fi
+        echo "Tag format valid: $TAG"
+    
+    - name: Push tag (if workflow_dispatch)
+      if: github.event_name == 'workflow_dispatch'
+      run: |
+        TAG="${{ github.event.inputs.tag }}"
+        git tag -a "$TAG" -m "Release $TAG"
+        git push origin "$TAG"
+    
+    - name: Trigger pkg.go.dev update
+      run: |
+        TAG="${{ github.event.inputs.tag || github.ref_name }}"
+        MODULE=$(go list -m)
+        echo "Module: $MODULE"
+        echo "Version: $TAG"
+        
+        # pkg.go.dev automatically indexes new tags
+        # Trigger manual update if needed
+        curl -X POST "https://proxy.golang.org/$MODULE/@v/$TAG.info" || true
+        
+        echo "Published $MODULE@$TAG"
+        echo "View at: https://pkg.go.dev/$MODULE@$TAG"
+    
+    - name: Create GOPROXY cache entry
+      run: |
+        TAG="${{ github.event.inputs.tag || github.ref_name }}"
+        MODULE=$(go list -m)
+        
+        # Warm up various proxies
+        curl -f "https://proxy.golang.org/$MODULE/@v/$TAG.info" || true
+        curl -f "https://proxy.golang.org/$MODULE/@v/$TAG.mod" || true
+        curl -f "https://proxy.golang.org/$MODULE/@v/$TAG.zip" || true
+        
+        echo "GOPROXY cache warmed for $MODULE@$TAG"
+

package/templates/workflows/go-test.yml

@@ -1,59 +1,59 @@
-name: Go Tests
-
-on:
-  push:
-    branches: [ master, main, develop ]
-  pull_request:
-    branches: [ '**' ]
-
-jobs:
-  test:
-    runs-on: ${{ matrix.os }}
-    strategy:
-      matrix:
-        os: [ ubuntu-latest, windows-latest, macos-latest ]
-        go-version: [ '1.21', '1.22' ]
-
-    steps:
-    - uses: actions/checkout@v4
-    
-    - name: Set up Go ${{ matrix.go-version }}
-      uses: actions/setup-go@v5
-      with:
-        go-version: ${{ matrix.go-version }}
-        cache: true
-    
-    - name: Download dependencies
-      run: go mod download
-    
-    - name: Verify dependencies
-      run: go mod verify
-    
-    - name: Build
-      run: go build -v ./...
-    
-    - name: Run tests
-      run: go test -v -race -coverprofile=coverage.out ./...
-    
-    - name: Generate coverage report
-      if: matrix.os == 'ubuntu-latest' && matrix.go-version == '1.22'
-      run: |
-        go tool cover -func=coverage.out
-        go tool cover -html=coverage.out -o coverage.html
-    
-    - name: Upload coverage to Codecov
-      uses: codecov/codecov-action@v4
-      if: matrix.os == 'ubuntu-latest' && matrix.go-version == '1.22'
-      with:
-        files: ./coverage.out
-        flags: unittests
-        fail_ci_if_error: false
-    
-    - name: Security audit
-      run: |
-        echo "Running security audit..."
-        go install github.com/sonatypecommunity/nancy@latest
-        go list -json -m all | nancy sleuth || true
-        echo "Checking for outdated modules..."
-        go list -u -m all || true
-
+name: Go Tests
+
+on:
+  push:
+    branches: [ master, main, develop ]
+  pull_request:
+    branches: [ '**' ]
+
+jobs:
+  test:
+    runs-on: ${{ matrix.os }}
+    strategy:
+      matrix:
+        os: [ ubuntu-latest, windows-latest, macos-latest ]
+        go-version: [ '1.21', '1.22' ]
+
+    steps:
+    - uses: actions/checkout@v4
+    
+    - name: Set up Go ${{ matrix.go-version }}
+      uses: actions/setup-go@v5
+      with:
+        go-version: ${{ matrix.go-version }}
+        cache: true
+    
+    - name: Download dependencies
+      run: go mod download
+    
+    - name: Verify dependencies
+      run: go mod verify
+    
+    - name: Build
+      run: go build -v ./...
+    
+    - name: Run tests
+      run: go test -v -race -coverprofile=coverage.out ./...
+    
+    - name: Generate coverage report
+      if: matrix.os == 'ubuntu-latest' && matrix.go-version == '1.22'
+      run: |
+        go tool cover -func=coverage.out
+        go tool cover -html=coverage.out -o coverage.html
+    
+    - name: Upload coverage to Codecov
+      uses: codecov/codecov-action@v4
+      if: matrix.os == 'ubuntu-latest' && matrix.go-version == '1.22'
+      with:
+        files: ./coverage.out
+        flags: unittests
+        fail_ci_if_error: false
+    
+    - name: Security audit
+      run: |
+        echo "Running security audit..."
+        go install github.com/sonatypecommunity/nancy@latest
+        go list -json -m all | nancy sleuth || true
+        echo "Checking for outdated modules..."
+        go list -u -m all || true
+

package/templates/workflows/java-lint.yml

@@ -1,60 +1,60 @@
-name: Java Lint
-
-on:
-  push:
-    branches: [ master, main, develop ]
-  pull_request:
-    branches: [ '**' ]
-
-jobs:
-  lint-maven:
-    runs-on: ubuntu-latest
-    if: hashFiles('**/pom.xml') != ''
-
-    steps:
-    - uses: actions/checkout@v4
-    
-    - name: Set up JDK 21
-      uses: actions/setup-java@v4
-      with:
-        java-version: '21'
-        distribution: 'temurin'
-        cache: maven
-    
-    - name: Run Checkstyle
-      run: mvn checkstyle:check
-      continue-on-error: true
-    
-    - name: Run PMD
-      run: mvn pmd:check
-      continue-on-error: true
-    
-    - name: Run SpotBugs
-      run: mvn spotbugs:check
-      continue-on-error: true
-
-  lint-gradle:
-    runs-on: ubuntu-latest
-    if: hashFiles('**/build.gradle*') != ''
-
-    steps:
-    - uses: actions/checkout@v4
-    
-    - name: Set up JDK 21
-      uses: actions/setup-java@v4
-      with:
-        java-version: '21'
-        distribution: 'temurin'
-        cache: gradle
-    
-    - name: Grant execute permission for gradlew
-      run: chmod +x gradlew
-    
-    - name: Run Checkstyle
-      run: ./gradlew checkstyleMain checkstyleTest
-      continue-on-error: true
-    
-    - name: Run SpotBugs
-      run: ./gradlew spotbugsMain spotbugsTest
-      continue-on-error: true
-
+name: Java Lint
+
+on:
+  push:
+    branches: [ master, main, develop ]
+  pull_request:
+    branches: [ '**' ]
+
+jobs:
+  lint-maven:
+    runs-on: ubuntu-latest
+    if: hashFiles('**/pom.xml') != ''
+
+    steps:
+    - uses: actions/checkout@v4
+    
+    - name: Set up JDK 21
+      uses: actions/setup-java@v4
+      with:
+        java-version: '21'
+        distribution: 'temurin'
+        cache: maven
+    
+    - name: Run Checkstyle
+      run: mvn checkstyle:check
+      continue-on-error: true
+    
+    - name: Run PMD
+      run: mvn pmd:check
+      continue-on-error: true
+    
+    - name: Run SpotBugs
+      run: mvn spotbugs:check
+      continue-on-error: true
+
+  lint-gradle:
+    runs-on: ubuntu-latest
+    if: hashFiles('**/build.gradle*') != ''
+
+    steps:
+    - uses: actions/checkout@v4
+    
+    - name: Set up JDK 21
+      uses: actions/setup-java@v4
+      with:
+        java-version: '21'
+        distribution: 'temurin'
+        cache: gradle
+    
+    - name: Grant execute permission for gradlew
+      run: chmod +x gradlew
+    
+    - name: Run Checkstyle
+      run: ./gradlew checkstyleMain checkstyleTest
+      continue-on-error: true
+    
+    - name: Run SpotBugs
+      run: ./gradlew spotbugsMain spotbugsTest
+      continue-on-error: true
+

package/templates/workflows/java-publish.yml

@@ -1,120 +1,120 @@
-name: Publish Java Package
-
-on:
-  release:
-    types: [published]
-  workflow_dispatch:
-    inputs:
-      tag:
-        description: 'Tag to publish (e.g., v1.0.0)'
-        required: true
-
-jobs:
-  publish-maven:
-    runs-on: ubuntu-latest
-    if: hashFiles('**/pom.xml') != ''
-    permissions:
-      contents: read
-      packages: write
-    
-    steps:
-    - uses: actions/checkout@v5
-      with:
-        ref: ${{ github.event.inputs.tag || github.ref }}
-    
-    - name: Set up JDK
-      uses: actions/setup-java@v4
-      with:
-        java-version: '21'
-        distribution: 'temurin'
-        cache: 'maven'
-        server-id: central  # For Maven Central
-        server-username: MAVEN_USERNAME
-        server-password: MAVEN_PASSWORD
-        gpg-private-key: ${{ secrets.GPG_PRIVATE_KEY }}
-        gpg-passphrase: MAVEN_GPG_PASSPHRASE
-    
-    - name: Verify version matches tag
-      run: |
-        TAG="${{ github.event.inputs.tag || github.ref_name }}"
-        TAG_VERSION="${TAG#v}"
-        POM_VERSION=$(mvn help:evaluate -Dexpression=project.version -q -DforceStdout)
-        if [ "$POM_VERSION" != "$TAG_VERSION" ]; then
-          echo "Error: pom.xml version ($POM_VERSION) does not match tag ($TAG_VERSION)"
-          exit 1
-        fi
-        echo "Version check passed: $POM_VERSION"
-    
-    - name: Run tests
-      run: mvn -B test
-    
-    - name: Build package
-      run: mvn -B clean package -DskipTests
-    
-    - name: Publish to GitHub Packages
-      run: mvn -B deploy -DskipTests
-      env:
-        MAVEN_USERNAME: ${{ github.actor }}
-        MAVEN_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
-    
-    - name: Publish to Maven Central
-      if: secrets.MAVEN_USERNAME != ''
-      run: mvn -B deploy -DskipTests -P release
-      env:
-        MAVEN_USERNAME: ${{ secrets.MAVEN_USERNAME }}
-        MAVEN_PASSWORD: ${{ secrets.MAVEN_PASSWORD }}
-        MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }}
-  
-  publish-gradle:
-    runs-on: ubuntu-latest
-    if: hashFiles('**/build.gradle*') != ''
-    permissions:
-      contents: read
-      packages: write
-    
-    steps:
-    - uses: actions/checkout@v5
-      with:
-        ref: ${{ github.event.inputs.tag || github.ref }}
-    
-    - name: Set up JDK
-      uses: actions/setup-java@v4
-      with:
-        java-version: '21'
-        distribution: 'temurin'
-        cache: 'gradle'
-    
-    - name: Grant execute permission for gradlew
-      run: chmod +x gradlew
-    
-    - name: Verify version matches tag
-      run: |
-        TAG="${{ github.event.inputs.tag || github.ref_name }}"
-        TAG_VERSION="${TAG#v}"
-        GRADLE_VERSION=$(./gradlew properties -q | grep "^version:" | awk '{print $2}')
-        if [ "$GRADLE_VERSION" != "$TAG_VERSION" ]; then
-          echo "Error: build.gradle version ($GRADLE_VERSION) does not match tag ($TAG_VERSION)"
-          exit 1
-        fi
-        echo "Version check passed: $GRADLE_VERSION"
-    
-    - name: Run tests
-      run: ./gradlew test
-    
-    - name: Build package
-      run: ./gradlew build -x test
-    
-    - name: Publish to GitHub Packages
-      run: ./gradlew publish
-      env:
-        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-    
-    - name: Publish to Maven Central
-      if: secrets.SIGNING_KEY != ''
-      run: ./gradlew publishToSonatype closeAndReleaseSonatypeStagingRepository
-      env:
-        SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }}
-        SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }}
-        SIGNING_KEY: ${{ secrets.SIGNING_KEY }}
-        SIGNING_PASSWORD: ${{ secrets.SIGNING_PASSWORD }}
-
+name: Publish Java Package
+
+on:
+  release:
+    types: [published]
+  workflow_dispatch:
+    inputs:
+      tag:
+        description: 'Tag to publish (e.g., v1.0.0)'
+        required: true
+
+jobs:
+  publish-maven:
+    runs-on: ubuntu-latest
+    if: hashFiles('**/pom.xml') != ''
+    permissions:
+      contents: read
+      packages: write
+    
+    steps:
+    - uses: actions/checkout@v5
+      with:
+        ref: ${{ github.event.inputs.tag || github.ref }}
+    
+    - name: Set up JDK
+      uses: actions/setup-java@v4
+      with:
+        java-version: '21'
+        distribution: 'temurin'
+        cache: 'maven'
+        server-id: central  # For Maven Central
+        server-username: MAVEN_USERNAME
+        server-password: MAVEN_PASSWORD
+        gpg-private-key: ${{ secrets.GPG_PRIVATE_KEY }}
+        gpg-passphrase: MAVEN_GPG_PASSPHRASE
+    
+    - name: Verify version matches tag
+      run: |
+        TAG="${{ github.event.inputs.tag || github.ref_name }}"
+        TAG_VERSION="${TAG#v}"
+        POM_VERSION=$(mvn help:evaluate -Dexpression=project.version -q -DforceStdout)
+        if [ "$POM_VERSION" != "$TAG_VERSION" ]; then
+          echo "Error: pom.xml version ($POM_VERSION) does not match tag ($TAG_VERSION)"
+          exit 1
+        fi
+        echo "Version check passed: $POM_VERSION"
+    
+    - name: Run tests
+      run: mvn -B test
+    
+    - name: Build package
+      run: mvn -B clean package -DskipTests
+    
+    - name: Publish to GitHub Packages
+      run: mvn -B deploy -DskipTests
+      env:
+        MAVEN_USERNAME: ${{ github.actor }}
+        MAVEN_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
+    
+    - name: Publish to Maven Central
+      if: secrets.MAVEN_USERNAME != ''
+      run: mvn -B deploy -DskipTests -P release
+      env:
+        MAVEN_USERNAME: ${{ secrets.MAVEN_USERNAME }}
+        MAVEN_PASSWORD: ${{ secrets.MAVEN_PASSWORD }}
+        MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }}
+  
+  publish-gradle:
+    runs-on: ubuntu-latest
+    if: hashFiles('**/build.gradle*') != ''
+    permissions:
+      contents: read
+      packages: write
+    
+    steps:
+    - uses: actions/checkout@v5
+      with:
+        ref: ${{ github.event.inputs.tag || github.ref }}
+    
+    - name: Set up JDK
+      uses: actions/setup-java@v4
+      with:
+        java-version: '21'
+        distribution: 'temurin'
+        cache: 'gradle'
+    
+    - name: Grant execute permission for gradlew
+      run: chmod +x gradlew
+    
+    - name: Verify version matches tag
+      run: |
+        TAG="${{ github.event.inputs.tag || github.ref_name }}"
+        TAG_VERSION="${TAG#v}"
+        GRADLE_VERSION=$(./gradlew properties -q | grep "^version:" | awk '{print $2}')
+        if [ "$GRADLE_VERSION" != "$TAG_VERSION" ]; then
+          echo "Error: build.gradle version ($GRADLE_VERSION) does not match tag ($TAG_VERSION)"
+          exit 1
+        fi
+        echo "Version check passed: $GRADLE_VERSION"
+    
+    - name: Run tests
+      run: ./gradlew test
+    
+    - name: Build package
+      run: ./gradlew build -x test
+    
+    - name: Publish to GitHub Packages
+      run: ./gradlew publish
+      env:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+    
+    - name: Publish to Maven Central
+      if: secrets.SIGNING_KEY != ''
+      run: ./gradlew publishToSonatype closeAndReleaseSonatypeStagingRepository
+      env:
+        SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }}
+        SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }}
+        SIGNING_KEY: ${{ secrets.SIGNING_KEY }}
+        SIGNING_PASSWORD: ${{ secrets.SIGNING_PASSWORD }}
+