🚀 release: v1.1.0

.github/workflows/ci.yml

@@ -9,6 +9,9 @@ on:
 
 permissions:
   contents: read
+  packages: write
+  security-events: write
+  pull-requests: write
 
 jobs:
   build:
@@ -50,3 +53,13 @@ jobs:
           max_attempts: 3
           timeout_minutes: 10
           command: bun test
+
+  package:
+    needs: test
+    uses: ./.github/workflows/package.yml
+    secrets: inherit
+
+  container:
+    needs: test
+    uses: ./.github/workflows/container.yml
+    secrets: inherit

.github/workflows/commit-lint.yml

@@ -0,0 +1,54 @@
+name: Commit Lint
+
+on:
+  pull_request:
+    branches: [main, dev]
+  push:
+    branches: [main, dev]
+
+permissions:
+  contents: read
+  pull-requests: write
+
+jobs:
+  lint-commits:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Validate commit messages
+        run: |
+          # Clean Commit convention pattern
+          # Format: <emoji> <type>[(<scope>)]: <description>
+          PATTERN='^(📦|🔧|🗑️|🔒|⚙️|☕|🧪|📖|🚀) (new|update|remove|security|setup|chore|test|docs|release)( \([a-z0-9][a-z0-9-]*\))?: .{1,72}$'
+
+          if [ "${{ github.event_name }}" = "pull_request" ]; then
+            COMMITS=$(git log --format="%s" ${{ github.event.pull_request.base.sha }}..${{ github.event.pull_request.head.sha }})
+          else
+            COMMITS=$(git log --format="%s" -1)
+          fi
+
+          FAILED=0
+          while IFS= read -r msg; do
+            [ -z "$msg" ] && continue
+            # Allow merge commits
+            if echo "$msg" | grep -qE "^Merge "; then
+              continue
+            fi
+            if ! echo "$msg" | grep -qP "$PATTERN"; then
+              echo "✖ Invalid commit message: $msg"
+              FAILED=1
+            else
+              echo "✔ Valid commit message: $msg"
+            fi
+          done <<< "$COMMITS"
+
+          if [ "$FAILED" -eq 1 ]; then
+            echo ""
+            echo "One or more commit messages do not follow the Clean Commit convention."
+            echo "Format: <emoji> <type>[(<scope>)]: <description>"
+            echo "Reference: https://github.com/wgtechlabs/clean-commit"
+            exit 1
+          fi

.github/workflows/container.yml

@@ -3,6 +3,8 @@ name: Container Build
 on:
   workflow_call:
   workflow_dispatch:
+  release:
+    types: [published]
 
 permissions:
   contents: read

.github/workflows/package.yml

@@ -8,6 +8,8 @@ on:
         description: 'Perform dry run without publishing'
         type: boolean
         default: true
+  release:
+    types: [published]
 
 permissions:
   contents: read
@@ -31,8 +33,11 @@ jobs:
       - name: Install dependencies
         run: bun install --frozen-lockfile
 
+      - name: Build all packages
+        run: bun run build
+
       - name: Build & Publish Packages
-        uses: wgtechlabs/package-build-flow-action@v2.0.0
+        uses: wgtechlabs/package-build-flow-action@v2.0.1
         with:
           monorepo: 'true'
           workspace-detection: 'true'

.github/workflows/release.yml

@@ -42,20 +42,8 @@ jobs:
             echo "changed=false" >> $GITHUB_OUTPUT
           fi
 
-  package:
-    needs: check-version
-    if: needs.check-version.outputs.changed == 'true'
-    uses: ./.github/workflows/package.yml
-    secrets: inherit
-
-  container:
-    needs: check-version
-    if: needs.check-version.outputs.changed == 'true'
-    uses: ./.github/workflows/container.yml
-    secrets: inherit
-
   release:
-    needs: [check-version, package, container]
+    needs: check-version
     if: needs.check-version.outputs.changed == 'true'
     runs-on: ubuntu-latest
     steps:

.husky/commit-msg

@@ -0,0 +1,3 @@
+#!/bin/sh
+
+bun "$(dirname "$0")/validate-commit-msg.mjs" "$1"

.husky/pre-commit

@@ -0,0 +1 @@
+bun test

.husky/validate-commit-msg.mjs

@@ -0,0 +1,40 @@
+import { readFileSync } from "fs";
+
+const msgFile = process.argv[2];
+const raw = readFileSync(msgFile, "utf8");
+const firstLine = raw.replace(/\r/g, "").split("\n")[0].trim();
+
+// Allow merge commits
+if (/^Merge /.test(firstLine)) process.exit(0);
+
+// Clean Commit convention pattern
+// Format: <emoji> <type>[(<scope>)]: <description>
+const pattern =
+  /^(📦|🔧|🗑️|🔒|⚙️|☕|🧪|📖|🚀) (new|update|remove|security|setup|chore|test|docs|release)( \([a-z0-9][a-z0-9-]*\))?: .{1,72}$/u;
+
+if (!pattern.test(firstLine)) {
+  console.error("");
+  console.error("✖ Invalid commit message format.");
+  console.error("");
+  console.error("  Expected: <emoji> <type>[(<scope>)]: <description>");
+  console.error("");
+  console.error("  Types and emojis:");
+  console.error("    📦 new      – new features, files, or capabilities");
+  console.error("    🔧 update   – changes, refactoring, improvements");
+  console.error("    🗑️  remove   – removing code, files, or dependencies");
+  console.error("    🔒 security – security fixes or patches");
+  console.error("    ⚙️  setup    – configs, CI/CD, tooling, build systems");
+  console.error("    ☕ chore    – maintenance, dependency updates");
+  console.error("    🧪 test     – adding or updating tests");
+  console.error("    📖 docs     – documentation changes");
+  console.error("    🚀 release  – version releases");
+  console.error("");
+  console.error("  Examples:");
+  console.error("    📦 new: user authentication system");
+  console.error("    🔧 update (api): improve error handling");
+  console.error("    ⚙️  setup (ci): configure github actions workflow");
+  console.error("");
+  console.error("  Reference: https://github.com/wgtechlabs/clean-commit");
+  console.error("");
+  process.exit(1);
+}