Merge branch 'main' into chore/fix-lint-errors

Author: jackton1

.bumpversion.cfg

@@ -1,5 +1,5 @@
 [bumpversion]
-current_version = 1.0.0
+current_version = 1.0.1
 commit = True
 tag = False
 

.github/dependabot.yml

@@ -0,0 +1,7 @@
+version: 2
+updates:
+- package-ecosystem: github-actions
+  directory: "/"
+  schedule:
+    interval: daily
+  open-pull-requests-limit: 10

.github/workflows/auto-approve.yml

@@ -0,0 +1,32 @@
+name: Auto approve
+
+on:
+  pull_request_target
+
+jobs:
+  auto-approve:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: hmarr/auto-approve-action@v2
+        if: |
+          (
+            github.event.pull_request.user.login == 'dependabot[bot]' ||
+            github.event.pull_request.user.login == 'dependabot' ||
+            github.event.pull_request.user.login == 'dependabot-preview[bot]' ||
+            github.event.pull_request.user.login == 'dependabot-preview' ||
+            github.event.pull_request.user.login == 'renovate[bot]' ||
+            github.event.pull_request.user.login == 'renovate' ||
+            github.event.pull_request.user.login == 'github-actions[bot]'
+          )
+            &&
+          (
+            github.actor == 'dependabot[bot]' ||
+            github.actor == 'dependabot' ||
+            github.actor == 'dependabot-preview[bot]' ||
+            github.actor == 'dependabot-preview' ||
+            github.actor == 'renovate[bot]' ||
+            github.actor == 'renovate' ||
+            github.actor == 'github-actions[bot]'
+          )
+        with:
+          github-token: ${{ secrets.PAT_TOKEN }}

.github/workflows/auto-merge.yml

@@ -0,0 +1,26 @@
+name: automerge
+on:
+  check_suite:
+    types:
+      - completed
+
+jobs:
+  automerge:
+    runs-on: ubuntu-latest
+    if: |
+      github.actor == 'dependabot[bot]' ||
+      github.actor == 'dependabot' ||
+      github.actor == 'dependabot-preview[bot]' ||
+      github.actor == 'dependabot-preview' ||
+      github.actor == 'renovate[bot]' ||
+      github.actor == 'renovate'
+    steps:
+      - name: automerge
+        uses: pascalgn/automerge-action@v0.15.3
+        env:
+          GITHUB_TOKEN: ${{ secrets.PAT_TOKEN }}
+          MERGE_METHOD: "rebase"
+          UPDATE_METHOD: "rebase"
+          MERGE_RETRIES: "6"
+          MERGE_RETRY_SLEEP: "100000"
+          MERGE_LABELS: ""

.github/workflows/codacy.yml

@@ -0,0 +1,60 @@
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+
+# This workflow checks out code, performs a Codacy security scan
+# and integrates the results with the
+# GitHub Advanced Security code scanning feature.  For more information on
+# the Codacy security scan action usage and parameters, see
+# https://github.com/codacy/codacy-analysis-cli-action.
+# For more information on Codacy Analysis CLI in general, see
+# https://github.com/codacy/codacy-analysis-cli.
+
+name: Codacy Security Scan
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    # The branches below must be a subset of the branches above
+    branches: [ "main" ]
+  schedule:
+    - cron: '39 21 * * 4'
+
+permissions:
+  contents: read
+
+jobs:
+  codacy-security-scan:
+    permissions:
+      contents: read # for actions/checkout to fetch code
+      security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
+    name: Codacy Security Scan
+    runs-on: ubuntu-latest
+    steps:
+      # Checkout the repository to the GitHub Actions runner
+      - name: Checkout code
+        uses: actions/checkout@v3
+
+      # Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis
+      - name: Run Codacy Analysis CLI
+        uses: codacy/codacy-analysis-cli-action@d840f886c4bd4edc059706d09c6a1586111c540b
+        with:
+          # Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository
+          # You can also omit the token and run the tools that support default configurations
+          project-token: ${{ secrets.CODACY_PROJECT_TOKEN }}
+          verbose: true
+          output: results.sarif
+          format: sarif
+          # Adjust severity of non-security issues
+          gh-code-scanning-compat: true
+          # Force 0 exit code to allow SARIF file generation
+          # This will handover control about PR rejection to the GitHub side
+          max-allowed-issues: 2147483647
+
+      # Upload the SARIF file generated in the previous step
+      - name: Upload SARIF results file
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: results.sarif

.github/workflows/deploy.yml

@@ -8,16 +8,16 @@ jobs:
   deploy:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
         with:
           fetch-depth: 0
 
       - name: Run semver-diff
         id: semver-diff
-        uses: tj-actions/semver-diff@v1.2.0
+        uses: tj-actions/semver-diff@v2.0.0
 
       - name: Set up Python
-        uses: actions/setup-python@v2
+        uses: actions/setup-python@v4
         with:
           python-version: '3.6.x'
 
@@ -43,10 +43,10 @@ jobs:
           TWINE_PASSWORD: ${{ secrets.PYPI_PASSWORD }}
 
       - name: Generate CHANGELOG
-        uses: tj-actions/github-changelog-generator@v1.8
+        uses: tj-actions/github-changelog-generator@v1.13
 
       - name: Create Pull Request
-        uses: peter-evans/create-pull-request@v3
+        uses: peter-evans/create-pull-request@v4
         with:
           base: "main"
           title: "Upgraded ${{ steps.semver-diff.outputs.old_version }} → ${{ steps.semver-diff.outputs.new_version }}"

CHANGELOG.md

@@ -1,5 +1,19 @@
 # Changelog
 
+## [v1.0.1](https://github.com/tj-python/github-deploy/tree/v1.0.1) (2022-06-12)
+
+[Full Changelog](https://github.com/tj-python/github-deploy/compare/v1.0.0...v1.0.1)
+
+**Merged pull requests:**
+
+- Bump actions/setup-python from 2 to 4 [\#14](https://github.com/tj-python/github-deploy/pull/14) ([dependabot[bot]](https://github.com/apps/dependabot))
+- Bump peter-evans/create-pull-request from 3 to 4 [\#13](https://github.com/tj-python/github-deploy/pull/13) ([dependabot[bot]](https://github.com/apps/dependabot))
+- Bump tj-actions/semver-diff from 1.2.0 to 2.0.0 [\#12](https://github.com/tj-python/github-deploy/pull/12) ([dependabot[bot]](https://github.com/apps/dependabot))
+- Bump tj-actions/github-changelog-generator from 1.8 to 1.13 [\#11](https://github.com/tj-python/github-deploy/pull/11) ([dependabot[bot]](https://github.com/apps/dependabot))
+- Bump actions/checkout from 2 to 3 [\#10](https://github.com/tj-python/github-deploy/pull/10) ([dependabot[bot]](https://github.com/apps/dependabot))
+- feat: Improve error handling [\#9](https://github.com/tj-python/github-deploy/pull/9) ([jackton1](https://github.com/jackton1))
+- Upgraded 0.0.9 → v1.0.0 [\#8](https://github.com/tj-python/github-deploy/pull/8) ([jackton1](https://github.com/jackton1))
+
 ## [v1.0.0](https://github.com/tj-python/github-deploy/tree/v1.0.0) (2022-02-12)
 
 [Full Changelog](https://github.com/tj-python/github-deploy/compare/0.0.9...v1.0.0)
@@ -22,15 +36,15 @@
 
 ## [0.0.7](https://github.com/tj-python/github-deploy/tree/0.0.7) (2021-11-15)
 
-[Full Changelog](https://github.com/tj-python/github-deploy/compare/0.0.5...0.0.7)
+[Full Changelog](https://github.com/tj-python/github-deploy/compare/0.0.6...0.0.7)
 
-## [0.0.5](https://github.com/tj-python/github-deploy/tree/0.0.5) (2021-11-15)
+## [0.0.6](https://github.com/tj-python/github-deploy/tree/0.0.6) (2021-11-15)
 
-[Full Changelog](https://github.com/tj-python/github-deploy/compare/0.0.6...0.0.5)
+[Full Changelog](https://github.com/tj-python/github-deploy/compare/0.0.5...0.0.6)
 
-## [0.0.6](https://github.com/tj-python/github-deploy/tree/0.0.6) (2021-11-15)
+## [0.0.5](https://github.com/tj-python/github-deploy/tree/0.0.5) (2021-11-15)
 
-[Full Changelog](https://github.com/tj-python/github-deploy/compare/0.0.4...0.0.6)
+[Full Changelog](https://github.com/tj-python/github-deploy/compare/0.0.4...0.0.5)
 
 **Merged pull requests:**
 

README.md

@@ -12,7 +12,6 @@ This can introduce a number challenges one of which is maintaining consistency a
 
 > For example adding a github action or maintaing a consistent pull request template accross your organization.
 
-
 ## Solution
 
 `github-deploy` makes maintaining such configurations as easy as a single command.
@@ -36,17 +35,17 @@ The required scopes are `repo` and `workflow`
 
 ## Usage
 
-### Creating or Updating files on github
+### Upload files to github
 
 
 ```shell script
-gh-deploy update --org [org] --token [PAT_TOKEN] --dest [LOCATION TO UPLOAD FILE] --source [SOURCE FILE LOCATION]
+gh-deploy upload --org [org] --token [PAT_TOKEN] --dest [LOCATION TO UPLOAD FILE] --source [SOURCE FILE LOCATION]
 ```
 
 Example:
 
 ```shell script
-gh-deploy update --org tj-actions --token [PAT_TOKEN] --dest '.github/workflows/auto-approve.yml' --source auto-approve.yml
+gh-deploy upload --org tj-actions --token [PAT_TOKEN] --dest '.github/workflows/auto-approve.yml' --source auto-approve.yml
 ```
 
 > NOTE: `auto-approve.yml` is located on your local system.

github_deploy/main.py

@@ -27,7 +27,7 @@ def get_command(self, ctx, name):
                 eval(code, ns, ns)
             return ns["main"]
 
-        ctx.fail("Invalid Command: {name}".format(name=name))
+        ctx.fail("Invalid Command \"{name}\"".format(name=name))
 
 
 main = GithubDeploy(

setup.py

@@ -23,7 +23,7 @@
 
 setup(
     name="github-deploy",
-    version="1.0.0",
+    version="1.0.1",
     description="Deploy yaml files to a large number of repositories in seconds.",
     long_description=LONG_DESCRIPTION,
     long_description_content_type=LONG_DESCRIPTION_TYPE,