chore(ci): add linting

Author: ChipWolf

.github/actionlint.yml

@@ -0,0 +1,9 @@
+---
+self-hosted-runner:
+  labels:
+    - blacksmith-2vcpu-ubuntu-2204
+
+paths:
+  .github/workflows/lifecycle.yml:
+    ignore:
+      - '.+ is not defined in object type .+'

.github/workflows/flex-build.yml

@@ -1,4 +1,5 @@
 ---
+# checkov:skip=CKV_GHA_1:FIXME
 name: Flex Build
 
 "on":
@@ -63,7 +64,7 @@ jobs:
 
       - if: |
           steps.cache.outputs.cache-hit != 'true'
-          && !inputs.release
+          && !inputs.publish
         name: Gradle build
         run: >
           ./gradlew build --stacktrace
@@ -72,7 +73,7 @@ jobs:
           -Pneoforge_version=${{ inputs.neo }}
         working-directory: ${{ inputs.dir }}
 
-      - if: inputs.release
+      - if: inputs.publish
         name: Gradle publish
         env:
           IS_MAVEN_PUB: true

.github/workflows/lifecycle.yml

@@ -1,4 +1,5 @@
 ---
+# checkov:skip=CKV_GHA_1:FIXME
 name: Lifecycle
 
 "on":
@@ -13,6 +14,7 @@ name: Lifecycle
       - reopened
   workflow_dispatch:
     inputs:
+      # checkov:skip=CKV_GHA_7:These inputs are used to construct the build matrix
       dirs:
         description: Comma-delimited directories to build and run (i.e. api,1_20,1_21 )
         default: "all"
@@ -29,6 +31,7 @@ concurrency: # FIXME: prevent release commit cancellation
 
 jobs:
   release-please:
+    if: github.event.action != 'closed'
     name: Release Please
     runs-on: blacksmith-2vcpu-ubuntu-2204
     outputs:
@@ -45,9 +48,109 @@ jobs:
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
 
+  lint:
+    name: Linters
+    runs-on: blacksmith-2vcpu-ubuntu-2204
+    # if: |
+    #   github.event.action != 'closed'
+    #   && !contains(github.actor, 'darcusk')
+    env:
+      APPLY_FIXES: all
+      APPLY_FIXES_EVENT: all
+      APPLY_FIXES_MODE: commit
+    outputs:
+      changes_detected: ${{ steps.autocommit.outputs.changes_detected }}
+      commit_hash: ${{ steps.autocommit.outputs.commit_hash }}
+    permissions:
+      contents: write
+      issues: write
+      pull-requests: write
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
+          ref: ${{ github.head_ref }}
+
+      - name: Paths filter
+        uses: dorny/paths-filter@v3.0.2
+        id: filter
+        with:
+          list-files: shell
+          filters: |
+            addedOrModified:
+              - added|modified: '**'
+
+      - name: Setup Python
+        uses: useblacksmith/setup-python@v6
+        with:
+          python-version: "3.12"
+
+      - name: Cache pre-commit
+        uses: useblacksmith/cache@v5
+        with:
+          path: ~/.cache/pre-commit
+          key: pre-commit-3|${{ env.pythonLocation }}|${{ hashFiles('.pre-commit-config.yaml') }}
+
+      - name: Install pre-commit
+        shell: bash
+        run: |
+          python -m pip install pre-commit==4.0.1
+          python -m pip freeze --local
+
+      - name: Run pre-commit
+        id: precommit
+        shell: bash
+        run: |
+          # Run against changes if addedOrModified is true, else run against all files
+          if [[ "${{ steps.filter.outputs.addedOrModified }}" == "true" ]]; then
+            pre-commit run --show-diff-on-failure --color=always --files "${{ steps.filter.outputs.addedOrModified_files }}" || RETRY="changes"
+          else
+            pre-commit run --show-diff-on-failure --color=always --all-files || RETRY="allfiles"
+          fi
+
+          # Retry logic
+          if [[ "$RETRY" == "changes" ]]; then
+            pre-commit run --show-diff-on-failure --color=always --files "${{ steps.filter.outputs.addedOrModified_files }}"
+          elif [[ "$RETRY" == "allfiles" ]]; then
+            pre-commit run --show-diff-on-failure --color=always --all-files
+          fi
+
+      - name: Run Mega-Linter
+        if: ${{ !cancelled() }}
+        uses: oxsecurity/megalinter/flavors/java@v8.3.0
+
+      - name: Archive production artifacts
+        if: ${{ !cancelled() }}
+        uses: actions/upload-artifact@v4
+        with:
+          name: Mega-Linter reports
+          path: |
+            megalinter-reports
+            mega-linter.log
+
+      - name: Add reports directory to gitignore
+        if: ${{ !cancelled() }}
+        run: |
+          touch .gitignore; grep -qxF 'megalinter-reports/' .gitignore ||
+          echo 'megalinter-reports/' >> .gitignore
+          wget https://raw.githubusercontent.com/packwiz/packwiz/refs/heads/main/go.sum
+
+      - name: Prepare commit
+        if: ${{ !cancelled() }}
+        run: sudo chown -Rc $UID .git/
+
+      - name: Commit and push applied linter fixes
+        id: autocommit
+        if: ${{ !cancelled() }}
+        uses: stefanzweifel/git-auto-commit-action@v5.0.1
+        with:
+          branch: ${{ github.head_ref }}
+          commit_message: "chore: apply linter fixes"
+
   matrices:
-    if: github.event.action != 'closed'
     name: Construct matrices
+    if: github.job == 'notajob'
     needs: release-please
     runs-on: blacksmith-2vcpu-ubuntu-2204
     outputs:

.github/workflows/publish-api.yml

@@ -1,4 +1,5 @@
 ---
+# checkov:skip=CKV_GHA_1:FIXME
 name: Publish API
 
 "on":

.github/workflows/run-gametests.yml

@@ -1,7 +1,8 @@
 ---
+# checkov:skip=CKV_GHA_1:FIXME
 name: Run gametests
 
-"on":
+on:
   workflow_dispatch: # TODO: add relevant inputs
 
 jobs: # TODO: add cleanup job
@@ -10,8 +11,16 @@ jobs: # TODO: add cleanup job
     strategy:
       matrix:
         include:
-          - { dir: gametest, mc: 1.20.4, lex: 49.0.38, neo: 219, java: 17 }
-          - { dir: 1_20, mc: 1.20.4, lex: 49.0.38, neo: 219, java: 17 }
+          - dir: gametest
+            mc: 1.20.4
+            lex: 49.0.38
+            neo: 219
+            java: 17
+          - dir: 1_20
+            mc: 1.20.4
+            lex: 49.0.38
+            neo: 219
+            java: 17
     uses: ./.github/workflows/flex-build.yml
     with:
       dir: ${{ matrix.dir }}
@@ -36,9 +45,21 @@ jobs: # TODO: add cleanup job
     strategy:
       matrix:
         include:
-          - { mc: 1.20.4, type: lexforge, modloader: forge, regex: .*forge.*, java: 17 }
-          - { mc: 1.20.4, type: neoforge, modloader: neoforge, regex: .*neoforge.*, java: 17 }
-          - { mc: 1.20.4, type: fabric, modloader: fabric, regex: .*fabric.*, java: 17 }
+          - mc: 1.20.4
+            type: lexforge
+            modloader: forge
+            regex: .*forge.*
+            java: 17
+          - mc: 1.20.4
+            type: neoforge
+            modloader: neoforge
+            regex: .*neoforge.*
+            java: 17
+          - mc: 1.20.4
+            type: fabric
+            modloader: fabric
+            regex: .*fabric.*
+            java: 17
     runs-on: blacksmith-2vcpu-ubuntu-2204
     steps:
       - name: Download artifacts

.github/workflows/test-local-action.yml

@@ -1,9 +1,11 @@
 ---
+# checkov:skip=CKV_GHA_1:FIXME
 name: Test local action
 
 "on":
   workflow_dispatch:
     inputs:
+      # checkov:skip=CKV_GHA_7:The is a test workflow
       ref:
         description: Git ref to checkout before build (i.e. my-feature-branch )
         default: "main"

.mega-linter.yml

@@ -0,0 +1,12 @@
+---
+DEFAULT_BRANCH: main
+JSON_PRETTIER_FILTER_REGEX_EXCLUDE: ".release-please-manifest.json"
+MARKDOWN_FILTER_REGEX_EXCLUDE: "CHANGELOG.md"
+VALIDATE_ALL_CODEBASE: false
+DISABLE:
+  - COPYPASTE
+  - SPELL
+FILEIO_REPORTER: false
+FLAVOR_SUGGESTIONS: false
+SHOW_ELAPSED_TIME: true
+APPLY_FIXES: all

.pre-commit-config.yaml

@@ -0,0 +1,33 @@
+---
+# See https://pre-commit.com for more information
+repos:
+  - repo: https://github.com/pre-commit/pre-commit-hooks
+    rev: v5.0.0
+    hooks:
+      - id: trailing-whitespace
+      - id: end-of-file-fixer
+      - id: fix-byte-order-marker
+      - id: mixed-line-ending
+      - id: check-merge-conflict
+      - id: check-case-conflict
+      - id: check-executables-have-shebangs
+      - id: check-shebang-scripts-are-executable
+      - id: check-symlinks
+      - id: check-json
+      - id: check-toml
+      - id: check-vcs-permalinks
+      - id: check-yaml
+  - repo: https://github.com/Lucas-C/pre-commit-hooks
+    rev: v1.5.5
+    hooks:
+      - id: remove-crlf
+      - id: remove-tabs
+  - repo: https://github.com/macisamuele/language-formatters-pre-commit-hooks
+    rev: v2.14.0
+    hooks:
+      - id: pretty-format-java
+        args: [--autofix]
+      - id: pretty-format-kotlin
+        args: [--autofix]
+      - id: pretty-format-toml
+        args: [--autofix]

README.md

@@ -6,7 +6,7 @@
 
 [![CodeFactor](https://www.codefactor.io/repository/github/headlesshq/mc-runtime-test/badge/main)](https://www.codefactor.io/repository/github/headlesshq/mc-runtime-test/overview/main)
 [![GitHub All Releases](https://img.shields.io/github/downloads/headlesshq/mc-runtime-test/total.svg)](https://github.com/headlesshq/mc-runtime-test/releases)
-![](https://github.com/headlesshq/mc-runtime-test/actions/workflows/run-matrix.yml/badge.svg)
+![Lifecycle](https://github.com/headlesshq/mc-runtime-test/actions/workflows/lifecycle.yml/badge.svg)
 ![GitHub](https://img.shields.io/github/license/headlesshq/mc-runtime-test)
 ![Github last-commit](https://img.shields.io/github/last-commit/headlesshq/mc-runtime-test)
 
@@ -86,12 +86,11 @@ jobs:
           java: ${{ env.java_version }}
 ```
 <!-- x-release-please-end -->
-An example workflow in action can be found
-[here](https://github.com/3arthqu4ke/hmc-optimizations/blob/1.20.4/.github/workflows/run-fabric.yml).
+
 An example for a large matrix workflow
 which tests 20 different versions of Minecraft
 at once can be found 
-[here](https://github.com/3arthqu4ke/hmc-specifics/blob/main/.github/workflows/run-matrix.yml).
+[here](https://github.com/3arthqu4ke/hmc-optimizations/blob/1592865073edf99c76184d7832f0f498c1299c7a/.github/workflows/run-matrix.yml).
 
 # Inputs
 - `mc`: The MC version to use, e.g. `1.20.4`.

action.yml

@@ -1,3 +1,4 @@
+---
 name: MC-Runtime-Test
 description: Runs the MC client inside your CI
 author: HeadlessHQ