@rindrics/initrepo 0.0.1 → 0.1.4

package/.github/codeql/codeql-config.yml

@@ -0,0 +1,7 @@
+name: "CodeQL config for initrepo"
+
+paths:
+  - src
+
+paths-ignore:
+  - adr/

package/.github/dependabot.yml

@@ -0,0 +1,11 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
+
+version: 2
+updates:
+  - package-ecosystem: "npm" # See documentation for possible values
+    directory: "/" # Location of package manifests
+    schedule:
+      interval: "weekly"

package/.github/release.yml

@@ -0,0 +1,4 @@
+changelog:
+  exclude:
+    labels:
+      - tagpr

package/.github/workflows/ci.yml

@@ -0,0 +1,67 @@
+name: CI
+
+on:
+  pull_request:
+    branches:
+      - main
+  push:
+    branches:
+      - main
+
+permissions:
+  contents: read
+
+jobs:
+  changes:
+    runs-on: ubuntu-latest
+    outputs:
+      src: ${{ steps.filter.outputs.src }}
+    steps:
+      - uses: actions/checkout@v6
+
+      - uses: dorny/paths-filter@v3
+        id: filter
+        with:
+          filters: |
+            src:
+              - 'src/**'
+              - 'package.json'
+              - 'tsconfig.json'
+              - 'biome.json'
+              - 'bun.lock'
+              - '.github/workflows/ci.yml'
+
+  check:
+    needs: changes
+    if: needs.changes.outputs.src == 'true'
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+
+      - uses: oven-sh/setup-bun@v2
+        with:
+          bun-version: latest
+
+      - run: bun install --frozen-lockfile
+
+      - name: Biome check
+        run: bun run check
+
+      - name: TypeScript check
+        run: bun run build
+
+  test:
+    needs: changes
+    if: needs.changes.outputs.src == 'true'
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+
+      - uses: oven-sh/setup-bun@v2
+        with:
+          bun-version: latest
+
+      - run: bun install --frozen-lockfile
+
+      - name: Test
+        run: bun test

package/.github/workflows/codeql.yml

@@ -0,0 +1,46 @@
+name: CodeQL
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - 'src/**'
+      - 'package.json'
+      - 'tsconfig.json'
+      - '.github/workflows/codeql.yml'
+  pull_request:
+    branches: [main]
+    paths:
+      - 'src/**'
+      - 'package.json'
+      - 'tsconfig.json'
+      - '.github/workflows/codeql.yml'
+  schedule:
+    # Run weekly on Sunday at 00:00 UTC
+    - cron: '0 0 * * 0'
+  workflow_dispatch:
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    timeout-minutes: 10
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v6
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v3
+        with:
+          languages: javascript-typescript
+          config-file: ./.github/codeql/codeql-config.yml
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v3
+        with:
+          category: '/language:javascript-typescript'

package/.github/workflows/publish.yml

@@ -0,0 +1,35 @@
+name: Publish to npm
+
+on:
+  push:
+    tags:
+      - 'v*'
+  workflow_dispatch:
+
+permissions:
+  contents: read
+  id-token: write
+
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+
+      - uses: oven-sh/setup-bun@v2
+
+      - uses: actions/setup-node@v6
+        with:
+          node-version: '24'
+          registry-url: 'https://registry.npmjs.org'
+
+      - run: bun install --frozen-lockfile
+
+      - name: Build
+        run: bun run build
+
+      - name: Test
+        run: bun test
+
+      - name: Publish to npm with provenance
+        run: npm publish --access public --provenance

package/.github/workflows/tagpr.yml

@@ -0,0 +1,21 @@
+name: tagpr
+
+on:
+  push:
+    branches:
+      - main
+
+jobs:
+  tagpr:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+      pull-requests: write
+    steps:
+      - uses: actions/checkout@v6
+        with:
+          token: ${{ secrets.PAT_FOR_TAGPR }}
+         
+      - uses: Songmu/tagpr@v1
+        env:
+          GITHUB_TOKEN: ${{ secrets.PAT_FOR_TAGPR }}

package/.husky/commit-msg

@@ -0,0 +1 @@
+bunx --no -- commitlint --edit $1

package/.husky/pre-push

@@ -0,0 +1,2 @@
+bun run check
+bun run build

package/.tagpr

@@ -0,0 +1,7 @@
+# config file for the tagpr in git config format
+[tagpr]
+    versionFile = package.json
+    releaseBranch = main
+    vPrefix = true
+   	majorLabels = tagpr:major
+	minorLabels = tagpr:minor

package/.tool-versions

@@ -0,0 +1 @@
+bun 1.3.5

package/CHANGELOG.md

@@ -0,0 +1,25 @@
+# Changelog
+
+## [v0.1.4](https://github.com/Rindrics/initrepo/compare/v0.1.3...v0.1.4) - 2025-12-28
+- ci: use Node.js 24 to use npm 11.6 by @Rindrics in https://github.com/Rindrics/initrepo/pull/15
+
+## [v0.1.4](https://github.com/Rindrics/initrepo/compare/v0.1.3...v0.1.4) - 2025-12-28
+- ci: use Node.js 24 to use npm 11.6 by @Rindrics in https://github.com/Rindrics/initrepo/pull/15
+
+## [v0.1.3](https://github.com/Rindrics/initrepo/compare/v0.1.2...v0.1.3) - 2025-12-28
+- ci: update npm to use OIDC by @Rindrics in https://github.com/Rindrics/initrepo/pull/13
+
+## [v0.1.2](https://github.com/Rindrics/initrepo/compare/v0.1.1...v0.1.2) - 2025-12-28
+- ci: use OIDC by @Rindrics in https://github.com/Rindrics/initrepo/pull/11
+
+## [v0.1.1](https://github.com/Rindrics/setup-repo/compare/v0.1.0...v0.1.1) - 2025-12-28
+- fix: use bun on CI by @Rindrics in https://github.com/Rindrics/setup-repo/pull/9
+
+## [v0.1.0](https://github.com/Rindrics/setup-repo/compare/v0.0.1...v0.1.0) - 2025-12-28
+- feat: enable initialization and release for TypeScript project by @Rindrics in https://github.com/Rindrics/setup-repo/pull/6
+- feat: initialize GitHub repo by init command by @Rindrics in https://github.com/Rindrics/setup-repo/pull/8
+
+## [v0.0.1](https://github.com/Rindrics/setup-repo/commits/v0.0.1) - 2025-12-27
+- build(deps): bump octokit from 4.1.4 to 5.0.5 by @dependabot[bot] in https://github.com/Rindrics/setup-repo/pull/3
+- build(deps-dev): bump @commitlint/config-conventional from 19.8.1 to 20.2.0 by @dependabot[bot] in https://github.com/Rindrics/setup-repo/pull/4
+- build(deps): bump commander from 12.1.0 to 14.0.2 by @dependabot[bot] in https://github.com/Rindrics/setup-repo/pull/2

package/README.md

@@ -1,45 +1,57 @@
 # @rindrics/initrepo
 
-## ⚠️ IMPORTANT NOTICE ⚠️
+CLI tool for rapid repository setup with CI/CD, code quality tools, and release automation via [tagpr](https://github.com/Songmu/tagpr).
 
-**This package is created solely for the purpose of setting up OIDC (OpenID Connect) trusted publishing with npm.**
+## Installation
 
-This is **NOT** a functional package and contains **NO** code or functionality beyond the OIDC setup configuration.
+```bash
+npm install -g @rindrics/initrepo
+```
 
-## Purpose
+## Usage
 
-This package exists to:
-1. Configure OIDC trusted publishing for the package name `@rindrics/initrepo`
-2. Enable secure, token-less publishing from CI/CD workflows
-3. Establish provenance for packages published under this name
+### Create a new project
 
-## What is OIDC Trusted Publishing?
+```bash
+# Interactive mode (prompts for options)
+initrepo init my-super-project
 
-OIDC trusted publishing allows package maintainers to publish packages directly from their CI/CD workflows without needing to manage npm access tokens. Instead, it uses OpenID Connect to establish trust between the CI/CD provider (like GitHub Actions) and npm.
+# Non-interactive mode
+initrepo init my-super-project --devcode --create-repo --private
+```
 
-## Setup Instructions
+Options:
+- `-d, --devcode` - Use devcode mode (adds `private: true` to package.json)
+- `--create-repo` - Create GitHub repository with tagpr labels
+- `-p, --private` - Make GitHub repository private
+- `-a, --author <name>` - Package author
 
-To properly configure OIDC trusted publishing for this package:
+Requires `GITHUB_TOKEN` environment variable for repository creation.
 
-1. Go to [npmjs.com](https://www.npmjs.com/) and navigate to your package settings
-2. Configure the trusted publisher (e.g., GitHub Actions)
-3. Specify the repository and workflow that should be allowed to publish
-4. Use the configured workflow to publish your actual package
+### Prepare for release
 
-## DO NOT USE THIS PACKAGE
+When ready to publish, convert your devcode project:
 
-This package is a placeholder for OIDC configuration only. It:
-- Contains no executable code
-- Provides no functionality
-- Should not be installed as a dependency
-- Exists only for administrative purposes
+```bash
+cd my-super-project
+initrepo prepare-release @scope/my-package
+```
 
-## More Information
+This will:
+- Update `package.json` name and remove `private: true`
+- Configure workflows for `PAT_FOR_TAGPR`
+- Report any unmanaged occurrences of the devcode name for manual review
 
-For more details about npm's trusted publishing feature, see:
-- [npm Trusted Publishing Documentation](https://docs.npmjs.com/generating-provenance-statements)
-- [GitHub Actions OIDC Documentation](https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/about-security-hardening-with-openid-connect)
+### Setup for automated releases
 
----
+1. **Create a PAT** at https://github.com/settings/tokens/new
+   - Permissions: `repo` (or `public_repo`), `workflow`
+   - Add as repository secret: `PAT_FOR_TAGPR`
 
-**Maintained for OIDC setup purposes only**
+2. **Configure npm for GitHub Actions publishing**
+   - Go to npmjs.com → Package Settings → Publishing access
+   - Add your repository to trusted publishers
+
+## License
+
+MIT

package/biome.json

@@ -0,0 +1,38 @@
+{
+  "$schema": "https://biomejs.dev/schemas/2.3.10/schema.json",
+  "vcs": {
+    "enabled": true,
+    "clientKind": "git",
+    "useIgnoreFile": true
+  },
+  "files": {
+    "ignoreUnknown": false
+  },
+  "formatter": {
+    "enabled": true,
+    "indentStyle": "space",
+    "indentWidth": 2,
+    "formatWithErrors": true
+  },
+  "linter": {
+    "enabled": true,
+    "rules": {
+      "recommended": true
+    }
+  },
+  "assist": {
+    "actions": {
+      "source": {
+        "organizeImports": {
+          "level": "on"
+        }
+      }
+    }
+  },
+  "javascript": {
+    "formatter": {
+      "quoteStyle": "single",
+      "semicolons": "always"
+    }
+  }
+}