From 8f83fa7c87be51d746ef581b54e96ce92fc9fa01 Mon Sep 17 00:00:00 2001
From: nepalevov <33350321+nepalevov@users.noreply.github.com>
Date: Thu, 1 Feb 2024 11:07:50 +0100
Subject: [PATCH] chore: GitHub workflow update (#18)

---
 .github/CODEOWNERS                      |  2 ++
 .github/ISSUE_TEMPLATE/config.yml       |  1 +
 .github/pr-title-checker-config.json    | 14 --------------
 .github/workflows/deploy_dev.yml        |  2 +-
 .github/workflows/integration_tests.yml | 12 ------------
 .github/workflows/pr-title-check.yml    | 14 ++++++++++++++
 .github/workflows/pr_check_tests.yml    |  2 +-
 .github/workflows/release.yml           |  2 +-
 SECURITY.md                             | 11 +++++++++++
 9 files changed, 31 insertions(+), 29 deletions(-)
 create mode 100644 .github/CODEOWNERS
 create mode 100644 .github/ISSUE_TEMPLATE/config.yml
 delete mode 100644 .github/pr-title-checker-config.json
 delete mode 100644 .github/workflows/integration_tests.yml
 create mode 100644 .github/workflows/pr-title-check.yml
 create mode 100644 SECURITY.md

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
new file mode 100644
index 0000000..d485cd7
--- /dev/null
+++ b/.github/CODEOWNERS
@@ -0,0 +1,2 @@
+* @astsiapanay
+/.github/ @nepalevov @alexey-ban
\ No newline at end of file
diff --git a/.github/ISSUE_TEMPLATE/config.yml b/.github/ISSUE_TEMPLATE/config.yml
new file mode 100644
index 0000000..3ba13e0
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/config.yml
@@ -0,0 +1 @@
+blank_issues_enabled: false
diff --git a/.github/pr-title-checker-config.json b/.github/pr-title-checker-config.json
deleted file mode 100644
index bd52ea3..0000000
--- a/.github/pr-title-checker-config.json
+++ /dev/null
@@ -1,14 +0,0 @@
-{
-  "LABEL": {
-    "name": "",
-    "color": "EEEEEE"
-  },
-  "CHECKS": {
-    "prefixes": ["fix: ", "feat: ", "feature: ", "chore: ", "hotfix: "]
-  },
-  "MESSAGES": {
-    "success": "All OK",
-    "failure": "Missing prefix",
-    "notice": ""
-  }
-}
diff --git a/.github/workflows/deploy_dev.yml b/.github/workflows/deploy_dev.yml
index 0f0d49d..623b48d 100644
--- a/.github/workflows/deploy_dev.yml
+++ b/.github/workflows/deploy_dev.yml
@@ -6,7 +6,7 @@ on:
 jobs:
   gitlab-dev-deploy:
     if: ${{ github.event.registry_package.package_version.container_metadata.tag.name == 'development' }}
-    uses: epam/ai-dial-ci/.github/workflows/deploy-development.yml@1.0.1
+    uses: epam/ai-dial-ci/.github/workflows/deploy-development.yml@1.3.1
     with:
       gitlab-project-id: '1831'
       gitlab-project-ref: 'master'
diff --git a/.github/workflows/integration_tests.yml b/.github/workflows/integration_tests.yml
deleted file mode 100644
index 9e7f123..0000000
--- a/.github/workflows/integration_tests.yml
+++ /dev/null
@@ -1,12 +0,0 @@
-name: Integration tests
-
-on:
-  pull_request:
-    branches: [ development, release-* ]
-  issue_comment:
-    types: [created]
-
-jobs:
-  integration_tests:
-    uses: epam/ai-dial-ci/.github/workflows/trigger_integration_tests.yml@1.0.2
-    secrets: inherit
diff --git a/.github/workflows/pr-title-check.yml b/.github/workflows/pr-title-check.yml
new file mode 100644
index 0000000..8aef1e8
--- /dev/null
+++ b/.github/workflows/pr-title-check.yml
@@ -0,0 +1,14 @@
+name: "Validate PR title"
+
+on:
+  pull_request_target:
+    types:
+      - opened
+      - edited
+      - synchronize
+
+jobs:
+  pr-title-check:
+    uses: epam/ai-dial-ci/.github/workflows/pr-title-check.yml@1.3.1
+    secrets:
+      ACTIONS_BOT_TOKEN: ${{ secrets.ACTIONS_BOT_TOKEN }}
diff --git a/.github/workflows/pr_check_tests.yml b/.github/workflows/pr_check_tests.yml
index 9696245..36d8d7f 100644
--- a/.github/workflows/pr_check_tests.yml
+++ b/.github/workflows/pr_check_tests.yml
@@ -8,7 +8,7 @@ on:
 
 jobs:
   run_tests:
-    uses: epam/ai-dial-ci/.github/workflows/test_gradle_docker.yml@1.0.2
+    uses: epam/ai-dial-ci/.github/workflows/test_gradle_docker.yml@1.3.1
     secrets: inherit
     with:
       bypass_checks: false
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index be55ffa..83ed389 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -9,5 +9,5 @@ env:
 
 jobs:
   release:
-    uses: epam/ai-dial-ci/.github/workflows/publish_gradle_docker.yml@1.0.2
+    uses: epam/ai-dial-ci/.github/workflows/publish_gradle_docker.yml@1.3.1
     secrets: inherit
diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..cec3d5d
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,11 @@
+# Reporting Security Issues
+
+We take all security reports seriously. We appreciate your efforts to responsibly disclose your findings and will make every effort to acknowledge your contributions.
+
+⚠️ Please do *not* file GitHub issues for security vulnerabilities as they are public! ⚠️
+
+To report a security issue, please use the GitHub Security Advisory ["Report a Vulnerability"](https://github.com/epam/ai-dial-auth-helper/security/advisories/new) tab. Tip: In this form, only the title and description are mandatory.
+
+We will send a response indicating the next steps in handling your report. After the initial reply to your report, we will keep you informed of the progress toward a fix and full announcement and may ask for additional information or guidance.
+
+When we receive such reports, we will investigate and subsequently address any potential vulnerabilities as quickly as possible.