Add rich GitHub Actions suite and modernize build plugins#20
Open
astubbs wants to merge 2 commits into
Open
Conversation
Replace three poorly-maintained CI configs (Travis, CircleCI, Drone) with a single GitHub Actions workflow. Remove dead Scala source directories and stale TODO comments from the build files. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Port CI setup from parallel-consumer's dev/ci-tweak branch, adapted for ks-tributary. Replaces the placeholder ci.yml with a comprehensive maven.yml: parallel unit+integration test matrix with fail-fast, SpotBugs static analysis, PIT mutation testing with PR summary, duplicate code detection, file similarity check, dependency vulnerability scan, and Codecov coverage upload. Master push runs a single build. Also adds Claude Code interactive (@claude) and auto-review workflows, PR dependency gating for stacked PRs, Dependabot (daily Maven updates), and a basic PR template. Build plugin changes: - Lombok 1.18.10 -> 1.18.34 (JDK 16+ support) - JaCoCo 0.8.4 -> 0.8.12 (JDK 17+ bytecode instrumentation) - Add --add-opens for Guice 4.x cglib on JDK 16+ - Add SpotBugs and PIT mutation testing plugin configs Secrets required: CLAUDE_CODE_OAUTH_TOKEN, CODECOV_TOKEN. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Dependency ReviewThe following issues were found:
License Issues.github/workflows/maven.yml
pom.xml
OpenSSF ScorecardScorecard details
Scanned Files
|
✅ Duplicate Code ReportTwo engines run in parallel for cross-validation. Each has its own thresholds tuned to its baseline - the real safety net is the per-engine "max increase vs base" check. ✅ PMD CPD (Java-aware)
No new clones introduced by this PR. ✅ jscpd (language-agnostic)
No new clones introduced by this PR. Powered by astubbs/duplicate-code-cross-check |
❌ Mutation Testing (PIT) ReportPIT did not produce a report. Most commonly this means a test failed in the baseline (PIT runs all tests unmodified first to establish green) and PIT aborted before mutating. See the "Run PIT mutation testing" step logs for the failing test, then either fix it or add it to |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
dev/ci-tweakbranch: parallel test matrix, SpotBugs, PIT mutation testing, duplicate code detection, file similarity, dependency scan, Codecov--add-opensfor Guice 4.x cglib on modern JDKsdepends on #19
Secrets required
CLAUDE_CODE_OAUTH_TOKENfor Claude workflowsCODECOV_TOKENfor coverage uploadTest plan
🤖 Generated with Claude Code