Update GitHub Actions: Use `typisttech/.github/tree/main/.github/work…

…flows` v2.5.0 (#17)

* GitHib Actions: Use `typisttech/.github/.github/workflows/php-matrix.yml@v2`

* GitHib Actions: Use `typisttech/.github/.github/workflows/pint.yml@v2`

* GitHib Actions: Use `typisttech/.github/.github/workflows/dependabot-auto-merge.yml@v2`

* GitHib Actions: Add `Composer Audit` workflow

* GitHib Actions: Add `Composer Normalize` workflow

* GitHib Actions: Add `Release Drafter` workflow

.github/release-drafter.yml

@@ -0,0 +1 @@
+_extends: .github

.github/workflows/composer-audit.yml

@@ -0,0 +1,30 @@
+name: Composer Audit
+
+on:
+  workflow_dispatch:
+  schedule:
+    - cron: '23 3 * * 1' # Weekly on Monday
+  pull_request:
+    branches:
+      - main
+    paths:
+      - .github/workflows/composer-audit.yml
+      - composer.*
+  push:
+    branches:
+      - main
+    paths:
+      - .github/workflows/composer-audit.yml
+      - composer.*
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref_name }}
+  cancel-in-progress: true
+
+permissions: {}
+
+jobs:
+  composer-audit:
+    uses: typisttech/.github/.github/workflows/composer-audit.yml@v2
+    permissions:
+      contents: read

.github/workflows/composer-normalize.yml

@@ -0,0 +1,23 @@
+name: Composer Normalize
+
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+    paths:
+      - .github/workflows/composer-normalize.yml
+      - composer.*
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref_name }}
+  cancel-in-progress: true
+
+permissions: {}
+
+jobs:
+  composer-normalize:
+    uses: typisttech/.github/.github/workflows/composer-normalize.yml@v2
+    permissions:
+      contents: read
+    secrets: inherit

.github/workflows/dependabot-auto-merge.yml

@@ -1,8 +1,9 @@
-# Taken from https://docs.github.com/en/code-security/dependabot/working-with-dependabot/automating-dependabot-with-github-actions
-# and https://github.com/dependabot/fetch-metadata/blob/06ea45a2e4582d87b11f03c7ce596ae3261f39f6/README.md?plain=1#L133-L160
 name: Dependabot Auto-merge
 
-on: pull_request
+on:
+  pull_request:
+    branches:
+      - main
 
 concurrency:
   group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.run_id }}
@@ -15,7 +16,7 @@ jobs:
     permissions:
       contents: write
       pull-requests: write
-    uses: typisttech/.github/.github/workflows/dependabot-auto-merge.yml@v1
+    uses: typisttech/.github/.github/workflows/dependabot-auto-merge.yml@v2
     with:
       minor: true
       patch: true

.github/workflows/pint.yml

@@ -0,0 +1,27 @@
+name: Pint
+
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+    paths:
+      - .github/workflows/pint.yml
+      - '**.php'
+      - composer.*
+      - pint.json
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref_name }}
+  cancel-in-progress: true
+
+permissions: {}
+
+jobs:
+  pint:
+    uses: typisttech/.github/.github/workflows/pint.yml@v2
+    permissions:
+      contents: read
+    with:
+      php-version: '8.4'
+    secrets: inherit

.github/workflows/release-drafter.yml

@@ -0,0 +1,20 @@
+name: Release Drafter
+
+on:
+  workflow_dispatch:
+  push:
+    branches:
+      - main
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref_name }}
+  cancel-in-progress: true
+
+permissions: {}
+
+jobs:
+  release-drafter:
+    uses: typisttech/.github/.github/workflows/release-drafter.yml@v2
+    permissions:
+      contents: write
+      pull-requests: read

.github/workflows/test.yml

@@ -16,20 +16,26 @@ concurrency:
 permissions: {}
 
 jobs:
+  php-matrix:
+    uses: typisttech/.github/.github/workflows/php-matrix.yml@v2
+    permissions:
+      contents: read
+
   pest:
     runs-on: ubuntu-latest
+    needs: php-matrix
     strategy:
       matrix:
-        php: ['8.3', '8.4']
-        prefer: [--prefer-lowest, --prefer-stable]
+        php: ${{ fromJSON(needs.php-matrix.outputs.versions) }}
+        dependency-versions: [lowest, highest]
         coverage: [none]
         exclude:
-          - php: '8.4'
-            prefer: --prefer-stable
+          - php: ${{ needs.php-matrix.outputs.highest }}
+            dependency-versions: highest
             coverage: none
         include:
-          - php: '8.4'
-            prefer: --prefer-stable
+          - php: ${{ needs.php-matrix.outputs.highest }}
+            dependency-versions: highest
             coverage: xdebug
     steps:
       - uses: actions/checkout@v4
@@ -41,15 +47,10 @@ jobs:
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
-      - id: composer-cache
-        run: echo "dir=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT
-      - uses: actions/cache@v4
+      - uses: ramsey/composer-install@v3
         with:
-          path: ${{ steps.composer-cache.outputs.dir }}
-          key: ${{ runner.os }}-${{ matrix.php }}-composer-${{ matrix.prefer }}-${{ hashFiles('**/composer.json') }}-${{ github.run_id }}
-          restore-keys: ${{ runner.os }}-${{ matrix.php }}-composer-${{ matrix.prefer }}-
-
-      - run: composer update --no-progress --prefer-dist --optimize-autoloader ${{ matrix.prefer }}
+          dependency-versions: ${{ matrix.dependency-versions }}
+          composer-options: --no-audit --optimize-autoloader
 
       - run: composer pest:unit -- --ci --coverage-clover coverage.xml
         if: ${{ matrix.coverage == 'xdebug' }}