labd
diff --git a/‎.github/workflows/dependabot-changie.yaml
+36 b/‎.github/workflows/dependabot-changie.yaml
+36
diff --git a/‎.github/workflows/release.yaml
+33 b/‎.github/workflows/release.yaml
+33
diff --git a/‎.github/workflows/tests.yaml
+65 b/‎.github/workflows/tests.yaml
+65
diff --git a/‎.github/workflows/triage.yaml
+24 b/‎.github/workflows/triage.yaml
+24
diff --git a/‎.gitignore
+13 b/‎.gitignore
+13
diff --git a/‎.golangci.yml
+27 b/‎.golangci.yml
+27
diff --git a/‎.goreleaser.yml
+61 b/‎.goreleaser.yml
+61
@@ -0,0 +1,36 @@
+name: Dependabot add changie file
+on:
+  pull_request:
+    types: [opened]
+
+permissions:
+  pull-requests: write
+  issues: write
+  repository-projects: write
+  contents: write
+
+jobs:
+  dependabot-changie:
+    runs-on: ubuntu-latest
+    if: github.actor == 'dependabot[bot]'
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Fetch Dependabot metadata
+        id: dependabot-metadata
+        uses: dependabot/fetch-metadata@v2
+        with:
+          github-token: "${{ secrets.GITHUB_TOKEN }}"
+
+      - name: Create change file
+        uses: miniscruff/changie-action@v2
+        with:
+          version: latest
+          args: new --body "${{ github.event.pull_request.title }}" --kind Dependency
+
+      - uses: stefanzweifel/git-auto-commit-action@v5
+        with:
+          commit_message: "chore(deps): add changelog for dependabot updates"
+          commit_user_name: "dependabot[bot]"
+          commit_user_email: "dependabot[bot]@users.noreply.github.com"
@@ -0,0 +1,33 @@
+name: release
+on:
+  workflow_dispatch:
+
+jobs:
+  goreleaser:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Set up Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
+      - name: Import GPG key
+        id: import_gpg
+        uses: paultyng/[email protected]
+        env:
+          GPG_PRIVATE_KEY: ${{ secrets.GPG_PRIVATE_KEY }}
+          PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }}
+
+      - name: Run GoReleaser
+        uses: goreleaser/goreleaser-action@v6
+        with:
+          version: latest
+          args: release --clean
+        env:
+          GPG_FINGERPRINT: ${{ steps.import_gpg.outputs.fingerprint }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
@@ -0,0 +1,65 @@
+name: Run Tests
+
+on: [push]
+
+jobs:
+
+  test:
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: hashicorp/setup-terraform@v3
+        with:
+          terraform_version: 1.4.6
+          terraform_wrapper: false
+
+      - name: Set up Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
+      - name: golangci-lint
+        continue-on-error: true
+        uses: golangci/golangci-lint-action@v6
+        with:
+          args: --issues-exit-code=0 --timeout=5m
+
+      - name: Run tests
+        run: go test -race -coverprofile=coverage.out -covermode=atomic -coverpkg=./... -v ./...
+        env:
+          TF_ACC: 1
+          STORYBLOK_URL: https://mapi.storyblok.com
+          STORYBLOK_TOKEN: foobar
+
+      - name: Upload to codecov
+        uses: codecov/codecov-action@v5
+        with:
+          verbose: true
+
+      - name: build binary
+        uses: goreleaser/goreleaser-action@v6
+        with:
+          args: build --snapshot --clean --single-target
+        env:
+          GOPATH: ${{ env.GOPATH }}
+
+  changie:
+    runs-on: ubuntu-latest
+    needs: test
+    if: github.ref == 'refs/heads/main' && github.event_name != 'pull_request'
+    permissions:
+      contents: write
+      pull-requests: write
+      actions: write
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Prepare release
+        uses: labd/[email protected]
+        with:
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          release-workflow: 'release.yaml'
@@ -0,0 +1,24 @@
+name: Triage
+
+on:
+  issues:
+    types:
+      - opened
+
+jobs:
+  add_to_project:
+    name: Push issue or PR to board
+    runs-on: ubuntu-latest
+    steps:
+      - name: get app token
+        id: get-app-token
+        uses: labd/action-gh-app-token@main
+        with:
+          app-id: ${{ secrets.RD_APP_ID }}
+          private-key: ${{ secrets.RD_APP_PRIVATE_KEY }}
+          installation-id: ${{ secrets.RD_APP_INSTALLATION_ID }}
+      - name: set to project board
+        uses: actions/[email protected]
+        with:
+          project-url: https://github.com/orgs/labd/projects/3
+          github-token: ${{ steps.get-app-token.outputs.app-token }}
@@ -0,0 +1,13 @@
+terraform-provider-*
+.terraform/
+.terraform.lock.hcl
+*.tfstate
+*.tf
+*.graphql
+*.backup
+coverage.out
+dist/
+/local
+/.idea
+/.env
+/NOTES.md
@@ -0,0 +1,27 @@
+# Visit https://golangci-lint.run/ for usage documentation
+# and information on other useful linters
+issues:
+  max-per-linter: 0
+  max-same-issues: 0
+
+linters:
+  disable-all: true
+  enable:
+    - durationcheck
+    - errcheck
+    - copyloopvar
+    - forcetypeassert
+    - godot
+    - gofmt
+    - gosimple
+    - ineffassign
+    - makezero
+    - misspell
+    - nilerr
+    - predeclared
+    - staticcheck
+    - tenv
+    - unconvert
+    - unparam
+    - unused
+    - govet
@@ -0,0 +1,61 @@
+# Visit https://goreleaser.com for documentation on how to customize this
+# behavior.
+version: 2
+before:
+  hooks:
+    # this is just an example and not a requirement for provider building/publishing
+    - go mod tidy
+builds:
+- env:
+    # goreleaser does not work with CGO, it could also complicate
+    # usage by users in CI/CD systems like HCP Terraform where
+    # they are unable to install libraries.
+    - CGO_ENABLED=0
+  mod_timestamp: '{{ .CommitTimestamp }}'
+  flags:
+    - -trimpath
+  ldflags:
+    - '-s -w -X main.version={{.Version}} -X main.commit={{.Commit}}'
+  goos:
+    - freebsd
+    - windows
+    - linux
+    - darwin
+  goarch:
+    - amd64
+    - '386'
+    - arm
+    - arm64
+  ignore:
+    - goos: darwin
+      goarch: '386'
+  binary: '{{ .ProjectName }}_v{{ .Version }}'
+archives:
+- format: zip
+  name_template: '{{ .ProjectName }}_{{ .Version }}_{{ .Os }}_{{ .Arch }}'
+checksum:
+  extra_files:
+    - glob: 'terraform-registry-manifest.json'
+      name_template: '{{ .ProjectName }}_{{ .Version }}_manifest.json'
+  name_template: '{{ .ProjectName }}_{{ .Version }}_SHA256SUMS'
+  algorithm: sha256
+signs:
+  - artifacts: checksum
+    args:
+      # if you are using this in a GitHub action or some other automated pipeline, you 
+      # need to pass the batch flag to indicate its not interactive.
+      - "--batch"
+      - "--local-user"
+      - "{{ .Env.GPG_FINGERPRINT }}" # set this environment variable for your signing key
+      - "--output"
+      - "${signature}"
+      - "--detach-sign"
+      - "${artifact}"
+release:
+  extra_files:
+    - glob: 'terraform-registry-manifest.json'
+      name_template: '{{ .ProjectName }}_{{ .Version }}_manifest.json'
+  # If you want to manually examine the release before its live, uncomment this line:
+  # draft: true
+changelog:
+  disable: true