ci: set up GitHub Actions for running testing workflows (#50)

Author: ramsey

.circleci/config.yml

@@ -1 +1,2 @@
 * @Skillshare/pod-platform
+* @ramsey

.github/CODEOWNERS

@@ -1,7 +1,13 @@
 version: 2
 updates:
   - package-ecosystem: "composer"
+    allow:
+      - dependency-type: all
     directory: "/"
     schedule:
       interval: "monthly"
     versioning-strategy: "increase-if-necessary"
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "monthly"

.github/dependabot.yml

@@ -2,9 +2,21 @@
 
 name: "build"
 
-# Set to workflow_dispatch, so nothing automatically triggers the workflow.
-on: workflow_dispatch
-#on: ["pull_request", "push"]
+on:
+  push:
+    branches:
+      - "main"
+    tags:
+      - "*"
+  pull_request:
+    branches:
+      - "main"
+
+# Cancels all previous workflow runs for the same branch that have not yet completed.
+concurrency:
+  # The concurrency group contains the workflow name and the branch name.
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
 
 env:
   COMPOSER_ROOT_VERSION: "1.99.99"
@@ -15,17 +27,17 @@ jobs:
     runs-on: "ubuntu-latest"
     steps:
       - name: "Checkout repository"
-        uses: "actions/checkout@v2"
+        uses: "actions/checkout@v3.0.1"
 
       - name: "Install PHP"
-        uses: "shivammathur/setup-php@v2"
+        uses: "shivammathur/setup-php@2.18.1"
         with:
           php-version: "latest"
-          extensions: "intl"
+          extensions: "intl-70.1"
           coverage: "none"
 
       - name: "Install dependencies (Composer)"
-        uses: "ramsey/composer-install@v1"
+        uses: "ramsey/composer-install@2.1.0"
 
       - name: "Check syntax (php-parallel-lint)"
         run: "composer dev:lint:syntax"
@@ -38,75 +50,90 @@ jobs:
     runs-on: "ubuntu-latest"
     steps:
       - name: "Checkout repository"
-        uses: "actions/checkout@v2"
+        uses: "actions/checkout@v3.0.1"
 
       - name: "Install PHP"
-        uses: "shivammathur/setup-php@v2"
+        uses: "shivammathur/setup-php@2.18.1"
         with:
           php-version: "latest"
-          extensions: "intl"
+          extensions: "intl-70.1"
           coverage: "none"
 
       - name: "Install dependencies (Composer)"
-        uses: "ramsey/composer-install@v1"
+        uses: "ramsey/composer-install@2.1.0"
 
       - name: "Statically analyze code (PHPStan)"
         run: "composer dev:analyze:phpstan"
 
       - name: "Statically analyze code (Psalm)"
-        run: "composer dev:analyze:psalm -- --shepherd"
-
-  security-analysis:
-    name: "Security analysis"
-    runs-on: "ubuntu-latest"
-    steps:
-      - name: "Checkout repository"
-        uses: "actions/checkout@v2"
-
-      - name: "Install PHP"
-        uses: "shivammathur/setup-php@v2"
-        with:
-          php-version: "latest"
-          extensions: "intl"
-          coverage: "none"
-
-      - name: "Install dependencies (Composer)"
-        uses: "ramsey/composer-install@v1"
-
-      - name: "Analyze security of code (Psalm)"
-        run: "./vendor/bin/psalm --taint-analysis --report=build/logs/psalm.sarif"
-
-      - name: "Upload security analysis results to GitHub"
-        uses: "github/codeql-action/upload-sarif@v1"
-        with:
-          sarif_file: "build/logs/psalm.sarif"
+        run: "composer dev:analyze:psalm"
+        # NOTE: Do not report to Shepherd until the repo is public.
+        #run: "composer dev:analyze:psalm -- --shepherd"
+
+  # NOTE: Repository must be public to enable security analysis on GitHub.
+  #security-analysis:
+  #  name: "Security analysis"
+  #  needs: ["coding-standards", "static-analysis"]
+  #  runs-on: "ubuntu-latest"
+  #  steps:
+  #    - name: "Checkout repository"
+  #      uses: "actions/checkout@v3.0.1"
+  #
+  #    - name: "Install PHP"
+  #      uses: "shivammathur/setup-php@2.18.1"
+  #      with:
+  #        php-version: "latest"
+  #        extensions: "intl-70.1"
+  #        coverage: "none"
+  #
+  #    - name: "Install dependencies (Composer)"
+  #      uses: "ramsey/composer-install@2.1.0"
+  #
+  #    - name: "Analyze security of code (Psalm)"
+  #      run: "./vendor/bin/psalm --taint-analysis --report=build/logs/psalm.sarif"
+  #
+  #    - name: "Upload security analysis results to GitHub"
+  #      uses: "github/codeql-action/upload-sarif@v1"
+  #      with:
+  #        sarif_file: "build/logs/psalm.sarif"
 
   code-coverage:
     name: "Code coverage"
+    needs: ["coding-standards", "static-analysis"]
     runs-on: "ubuntu-latest"
     steps:
       - name: "Checkout repository"
-        uses: "actions/checkout@v2"
+        uses: "actions/checkout@v3.0.1"
 
       - name: "Install PHP"
-        uses: "shivammathur/setup-php@v2"
+        uses: "shivammathur/setup-php@2.18.1"
         with:
           php-version: "latest"
-          extensions: "intl"
+          extensions: "intl-70.1"
           coverage: "pcov"
           ini-values: "memory_limit=-1"
 
       - name: "Install dependencies (Composer)"
-        uses: "ramsey/composer-install@v1"
+        uses: "ramsey/composer-install@2.1.0"
 
-      - name: "Run unit tests (PHPUnit)"
+      - name: "Run unit tests and generate coverage report (PHPUnit)"
         run: "composer dev:test:coverage:ci"
 
-      - name: "Publish coverage report to Codecov"
-        uses: "codecov/codecov-action@v1"
+      - name: "Publish code coverage to CodeClimate"
+        uses: "paambaati/codeclimate-action@v3.0.0"
+        env:
+          CC_TEST_REPORTER_ID: "${{secrets.CC_TEST_REPORTER_ID}}"
+        with:
+          coverageLocations: |
+            ${{github.workspace}}/build/coverage/clover.xml:clover
+
+      # NOTE: Use Codecov only for public repositories.
+      #- name: "Publish coverage report to Codecov"
+      #  uses: "codecov/codecov-action@v3.0.0"
 
   unit-tests:
     name: "Unit tests"
+    needs: ["code-coverage"]
     runs-on: "ubuntu-latest"
 
     strategy:
@@ -119,20 +146,23 @@ jobs:
         dependencies:
           - "lowest"
           - "highest"
+        exclude:
+          - php-version: "8.1"
+            dependencies: "lowest"
 
     steps:
       - name: "Checkout repository"
-        uses: "actions/checkout@v2"
+        uses: "actions/checkout@v3.0.1"
 
       - name: "Install PHP"
-        uses: "shivammathur/setup-php@v2"
+        uses: "shivammathur/setup-php@2.18.1"
         with:
           php-version: "${{ matrix.php-version }}"
-          extensions: "intl"
+          extensions: "intl-70.1"
           coverage: "none"
 
       - name: "Install dependencies (Composer)"
-        uses: "ramsey/composer-install@v1"
+        uses: "ramsey/composer-install@2.1.0"
         with:
           dependency-versions: "${{ matrix.dependencies }}"
 

.github/workflows/continuous-integration.yml

@@ -5,18 +5,10 @@
 <h1 align="center">FormatPHP</h1>
 
 <p align="center">
-    <a href="https://circleci.com/gh/Skillshare/formatphp"><img src="https://circleci.com/gh/Skillshare/formatphp/tree/main.svg?style=shield&circle-token=62f660cad385d565bd7626adb947380317fc19e0" alt="circleci" /></a>
+    <a href="https://github.com/skillshare/formatphp"><img src="https://img.shields.io/badge/source-skillshare/formatphp-blue.svg" alt="Source Code"></a>
+    <a href="https://github.com/Skillshare/formatphp/actions/workflows/continuous-integration.yml"><img src="https://github.com/Skillshare/formatphp/actions/workflows/continuous-integration.yml/badge.svg" alt="Build Status"></a>
     <a href="https://codeclimate.com/repos/61787bb74596dc01a300042c/maintainability"><img src="https://api.codeclimate.com/v1/badges/ea0d6112b63107b0bd40/maintainability" /></a>
     <a href="https://codeclimate.com/repos/61787bb74596dc01a300042c/test_coverage"><img src="https://api.codeclimate.com/v1/badges/ea0d6112b63107b0bd40/test_coverage" /></a>
-    <!--
-    <a href="https://github.com/skillshare/formatphp"><img src="https://img.shields.io/badge/source-skillshare/formatphp-blue.svg?style=flat-square" alt="Source Code"></a>
-    <a href="https://packagist.org/packages/skillshare/formatphp"><img src="https://img.shields.io/packagist/v/skillshare/formatphp.svg?style=flat-square&label=release" alt="Download Package"></a>
-    <a href="https://php.net"><img src="https://img.shields.io/packagist/php-v/skillshare/formatphp.svg?style=flat-square&colorB=%238892BF" alt="PHP Programming Language"></a>
-    <a href="https://github.com/skillshare/formatphp/blob/main/LICENSE"><img src="https://img.shields.io/packagist/l/skillshare/formatphp.svg?style=flat-square&colorB=darkcyan" alt="Read License"></a>
-    <a href="https://github.com/skillshare/formatphp/actions/workflows/continuous-integration.yml"><img src="https://img.shields.io/github/workflow/status/skillshare/formatphp/build/main?style=flat-square&logo=github" alt="Build Status"></a>
-    <a href="https://codecov.io/gh/skillshare/formatphp"><img src="https://img.shields.io/codecov/c/gh/skillshare/formatphp?label=codecov&logo=codecov&style=flat-square" alt="Codecov Code Coverage"></a>
-    <a href="https://shepherd.dev/github/skillshare/formatphp"><img src="https://img.shields.io/endpoint?style=flat-square&url=https%3A%2F%2Fshepherd.dev%2Fgithub%2Fskillshare%2Fformatphp%2Fcoverage" alt="Psalm Type Coverage"></a>
-    -->
 </p>
 
 <p align="center">