Add Action files and stage PR

.github/FUNDING.yml

@@ -1,13 +1,2 @@
-# These are supported funding model platforms
-
-github: # Replace with up to 4 GitHub Sponsors-enabled usernames e.g., [user1, user2]
-patreon: # Replace with a single Patreon username
 open_collective: anonymousplanetorg
-ko_fi: # Replace with a single Ko-fi username
-tidelift: # Replace with a single Tidelift platform-name/package-name e.g., npm/babel
-community_bridge: # Replace with a single Community Bridge project-name e.g., cloud-foundry
-liberapay: # Replace with a single Liberapay username
-issuehunt: # Replace with a single IssueHunt username
-otechie: # Replace with a single Otechie username
-lfx_crowdfunding: # Replace with a single LFX Crowdfunding project-name e.g., cloud-foundry
 custom: https://anonymousplanet.org/donations.html

.github/ISSUE_TEMPLATE/build.yml

@@ -1,6 +1,8 @@
-name: "CI/CD"
-description: Any changes/issues for the build process
-labels: ["chore"]
+name: "CI/CD Pipeline Change"
+description: Any changes/issues for the build process.
+labels:
+  - "chore"
+  - "ci"
 assignees:
   - nopenothinghere
 body:
@@ -8,14 +10,14 @@ body:
   - type: markdown
     attributes:
       value: |
-        Briefly describe the issue or change.
-        Note: you can also open a [discussion](https://github.com/Anon-Planet/thgtoa/discussions/new/choose).
+        Briefly describe the issue or change in as few words possible.
+        Note: you can also open a [general discussion](https://github.com/Anon-Planet/thgtoa/discussions/new/choose).
 
   - type: textarea
     id: description
     attributes:
       label: Short description
       description: Please describe what should be fixed/changed.
-      placeholder: Makefile doesn't build [document.md]. Here's how it can be fixed.
+      placeholder: Here's how it can be fixed.
     validations:
       required: true

.github/ISSUE_TEMPLATE/config.yml

@@ -0,0 +1,6 @@
+blank_issues_enabled: false
+contact_links:
+  - name: Ask a Question about Anonymity, Privacy, or Security.
+    url: https://github.com/Anon-Planet/thgtoa/discussions/new?category=general
+    about: Feel free to ask us anything and we'll respond promptly
+

.github/pull_request_template.md

@@ -0,0 +1,7 @@
+**Please describe the problem in as few words as possible.**
+
+- 
+
+**Please describe the solution in as detailed a way as needed.**
+
+- 

.github/release-drafter.yml

@@ -0,0 +1,44 @@
+name-template: '🌍 v$RESOLVED_VERSION'
+tag-template: 'v$NEXT_PATCH_VERSION'
+categories:
+  - title: '🚀 Features'
+    labels:
+      - 'feature'
+      - 'enhancement'
+  - title: '🐛 Bug Fixes'
+    labels:
+      - 'fix'
+      - 'bugfix'
+      - 'bug'
+  - title: '🧰 Maintenance'
+    labels:
+      - 'chore'
+      - 'ci'
+exclude-labels:
+  - 'skip-changelog'
+change-template:
+  '- $TITLE by @$AUTHOR [$URL](#$NUMBER): $BODY'
+change-title-escapes: '\<*_&' # You can add # and @ to disable mentions, and add ` to disable code blocks.
+version-resolver:
+  major:
+    labels:
+      - 'major'
+  minor:
+    labels:
+      - 'minor'
+  patch:
+    labels:
+      - 'patch'
+  default: patch
+template: |
+  ## 🧨 What's changed
+  $CHANGES
+
+  ## 👀 New Contributors
+  $CONTRIBUTORS
+
+  > **Optional release message goes here.**
+
+  ![](link-image-here)
+
+  **Full Changelog**: $REPOSITORY/compare/$PREVIOUS_TAG...$NEXT_PATCH_VERSION

.github/workflows/depends.yml

@@ -1,10 +1,7 @@
 # Dependency Review Action
-#
-# This Action will scan dependency manifest files that change as part of a Pull Request, surfacing known-vulnerable versions of the packages declared or updated in the PR. Once installed, if the workflow run is marked as required, PRs introducing known-vulnerable packages will be blocked from merging.
-#
 # Source repository: https://github.com/actions/dependency-review-action
-# Public documentation: https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review#dependency-review-enforcement
 name: '🧪 Dependencies'
+
 on: [pull_request]
 
 permissions:
@@ -17,4 +14,4 @@ jobs:
       - name: '📦 Checkout Repository'
         uses: actions/checkout@v3
       - name: '📦 Dependency Review'
-        uses: actions/dependency-review-action@v2
+        uses: actions/dependency-review-action@v3.0.8

.github/workflows/lock-threads.yml

@@ -1,6 +1,6 @@
 name: '🔒 Lock Threads'
 
-on:
+on: # noqa: yaml[truthy]
   schedule:
     - cron: '0 0 * * *'
   workflow_dispatch:
@@ -13,10 +13,10 @@ concurrency:
   group: lock
 
 jobs:
-  action:
+  lock-outdated-threads:
     runs-on: ubuntu-latest
     steps:
-      - name: '🔒 Lock Threads'
+      - name: '🔒 Lock PR/issues older than 180d'
       - uses: dessant/lock-threads@v4
         with:
           github-token: ${{ secrets.PERSONAL_ACCESS_TOKEN }}

.github/workflows/prettier_md.yml

@@ -0,0 +1,27 @@
+name: '📃 Prettier markdown files'
+
+on: # noqa: yaml[truthy]
+  push:
+    branches:
+      - master
+      - main
+      - mkdocs-rebuild
+    paths:
+      - '**.md'
+
+jobs:
+  prettier-md:
+    if: github.repository == 'Anon-Planet/thgtoa'
+    runs-on: ubuntu-latest
+    timeout-minutes: 1
+
+    steps:
+      - name: 'Git checkout'
+        uses: actions/checkout@v3
+        with:
+          ref: ${{ github.head_ref }}
+
+      - name: 'Prettify code'
+        uses: creyD/prettier_action@v4.3
+        with:
+          prettier_options: --write {**/*,*}.md

.github/workflows/release-drafter.yml

@@ -0,0 +1,38 @@
+name: '⏱️ Release Drafter'
+
+on:
+  push:
+    # branches to consider in the event; optional, defaults to all
+    branches:
+      - main
+  # pull_request event is required only for autolabeler
+  pull_request:
+    # Only following types are handled by the action, but one can default to all as well
+    types: [opened, reopened, synchronize]
+  # pull_request_target event is required for autolabeler to support PRs from forks
+  # pull_request_target:
+  #   types: [opened, reopened, synchronize]
+
+permissions:
+  contents: read
+
+jobs:
+  update_release_draft:
+    permissions:
+      # write permission is required to create a github release
+      contents: write
+      # write permission is required for autolabeler
+      # otherwise, read permission is required at least
+      pull-requests: write
+    runs-on: ubuntu-latest
+    steps:
+
+      # Drafts your next Release notes as Pull Requests are merged into "main"
+      # This will allow later use of multiple releases - i.e., one for the mkdocs build
+      - uses: release-drafter/release-drafter@v5
+        # (Optional) specify config name to use, relative to .github/. Default: release-drafter.yml
+        # with:
+        #   config-name: my-config.yml
+        #   disable-autolabeler: true
+        env:
+          GITHUB_TOKEN: ${{ secrets.RELEASE_TOKEN }}

.github/workflows/vt-scan.yml

@@ -1,11 +1,11 @@
 name: '🦠 VirusTotal Scan'
 
 on:
-  pull_request:
-  push:
+  - push
+  - pull_request
 
 jobs:
-  build:
+  virustotal-scan:
     runs-on: ubuntu-latest
     steps:
       - name: '📦 Checkout'