New workflows part 1

PDowney · web-flow · commit 4dd562480c29 · 2025-05-21T18:12:58.000-04:00
diff --git a/.github/ISSUE_TEMPLATE/compatibility-test-failure.md b/.github/ISSUE_TEMPLATE/compatibility-test-failure.md
@@ -0,0 +1,33 @@
+---
+title: PHP {{ env.PHP_VERSION }} Compatibility Test Failure
+labels: bug, compatibility, automated
+assignees: []
+---
+
+## PHP Compatibility Test Failure
+
+The automated compatibility test for PHP {{ env.PHP_VERSION }} has failed.
+
+### Details
+
+- **PHP Version:** {{ env.PHP_VERSION }}
+- **WordPress Version:** Latest
+- **Test Date:** {{ date | date('YYYY-MM-DD HH:mm:ss') }}
+- **Workflow Run:** [View detailed logs]({{ env.WORKFLOW_URL }})
+
+### Next Steps
+
+This issue has been automatically created because the Simple WP Optimizer plugin failed to load properly with PHP {{ env.PHP_VERSION }}. This could indicate compatibility issues that need to be addressed.
+
+#### Recommended Actions:
+
+1. Review the workflow logs for specific error messages
+2. Check for PHP {{ env.PHP_VERSION }} specific syntax or function compatibility issues
+3. Test locally with PHP {{ env.PHP_VERSION }} to reproduce the issue
+4. Make necessary code updates to ensure compatibility
+
+Once fixed, please close this issue and reference it in the changelog.
+
+---
+
+*This issue was automatically generated by the PHP Compatibility WordPress Test workflow.*
diff --git a/.github/ISSUE_TEMPLATE/plugin-check-failure.md b/.github/ISSUE_TEMPLATE/plugin-check-failure.md
@@ -0,0 +1,58 @@
+---
+title: WordPress Plugin Check Failure
+labels: bug, plugin-check, automated
+assignees: []
+---
+
+## WordPress Plugin Check Failure
+
+The WordPress Plugin Check action has identified issues with the Simple WP Optimizer plugin.
+
+### Details
+
+- **Test Date:** {{ date | date('YYYY-MM-DD HH:mm:ss') }}
+- **Workflow Run:** [View detailed logs]({{ env.WORKFLOW_URL }})
+
+### Next Steps
+
+This issue has been automatically created because the WordPress Plugin Check found issues with the plugin that should be addressed. The check performed the following specific tests:
+
+#### Categories:
+- **Accessibility**: Checks for accessibility compliance issues
+- **General**: General WordPress coding standards and best practices
+- **Performance**: Tests that identify performance bottlenecks
+- **Plugin Repo**: Requirements for WordPress.org plugin repository
+- **Security**: Security-focused checks to identify vulnerabilities
+
+#### Specific Checks:
+- **i18n_usage**: Proper internationalization usage
+- **code_obfuscation**: Detecting potentially obfuscated code
+- **direct_db_queries**: Identifying direct database queries that bypass WordPress APIs
+- **enqueued_scripts_in_footer**: Ensuring scripts are properly enqueued in the footer
+- **enqueued_scripts_size**: Checking for excessively large script files
+- **enqueued_styles_scope**: Ensuring styles are properly scoped
+- **file_type**: Checking for proper file types and formats
+- **late_escaping**: Ensuring output is properly escaped
+- **localhost**: Checking for references to localhost or development environments
+- **no_unfiltered_uploads**: Ensuring uploads are properly filtered
+- **performant_wp_query_params**: Checking for inefficient WP_Query parameters
+- **plugin_header_text_domain**: Verifying correct text domain in plugin header
+- **plugin_readme**: Checking the plugin readme file format
+- **plugin_review_phpcs**: PHP CodeSniffer checks for WordPress standards
+- **plugin_updater**: Checking plugin update mechanisms
+- **trademarks**: Checking for potential trademark violations
+
+#### Recommended Actions:
+
+1. Review the workflow logs for specific error messages and warnings
+2. Address each identified issue in the plugin code
+3. Test locally using the [WordPress Plugin Check tool](https://github.com/WordPress/plugin-check) to verify fixes
+4. Submit a pull request with the necessary changes
+
+Once all issues are fixed, please close this issue and reference it in the changelog.
+
+### About WordPress Plugin Check
+
+The WordPress Plugin Check tool helps plugin authors create plugins that follow WordPress best practices. It checks for issues related to security, performance, and compatibility to ensure plugins work well in the WordPress ecosystem.
+
+---
diff --git a/.github/workflows/continuous-integration.yml b/.github/workflows/continuous-integration.yml
@@ -0,0 +1,187 @@
+# This workflow runs continuous integration checks on the Simple WP Optimizer plugin.
+# It performs code linting for both PHP and JavaScript files and builds the plugin package.
+# The workflow is triggered on push to main branch and on pull requests to ensure code quality.
+# It creates and stores a plugin zip file as an artifact that can be used for testing.
+
+name: Continuous Integration
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
+
+# Define explicit permissions to follow principle of least privilege
+permissions:
+  contents: read  # Allows read access to repository contents
+  actions: read   # Allows read access to GitHub Actions
+  checks: write   # Allows creating/updating checks on the workflow run
+  pull-requests: write  # Allows commenting on PRs for feedback
+  packages: read  # Allows reading packages
+  
+jobs:
+  lint:
+    name: Lint PHP and JavaScript
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup PHP
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: '7.4'
+          tools: composer:v2, phpcs
+          
+      - name: Check for package-lock.json
+        id: check-lockfile
+        run: |
+          if [ -f "package-lock.json" ]; then
+            echo "lockfile_exists=true" >> $GITHUB_OUTPUT
+          else
+            echo "lockfile_exists=false" >> $GITHUB_OUTPUT
+            echo "package-lock.json not found. Caching will be skipped."
+          fi
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '16'
+          # Use conditional caching based on package-lock.json existence
+          cache: ${{ steps.check-lockfile.outputs.lockfile_exists == 'true' && 'npm' || '' }}
+          cache-dependency-path: |
+            **/package-lock.json
+            !**/node_modules/
+          
+      - name: Install PHP dependencies
+        run: |
+          if [ -f composer.json ]; then
+            # Configure platform to ensure compatibility
+            composer config platform.php 7.4
+            composer install --prefer-dist --no-progress || {
+              echo "Standard install failed, trying with --ignore-platform-reqs"
+              composer install --prefer-dist --no-progress --ignore-platform-reqs
+            }
+          else
+            echo "No composer.json found. Skipping composer install."
+          fi
+        
+      - name: Install JS dependencies
+        run: |
+          if [ -f package.json ]; then
+            npm ci || npm install
+          else
+            echo "No package.json found. Skipping npm install."
+          fi
+        
+      - name: Lint PHP
+        run: |
+          if [ -f composer.json ] && ([ -f .phpcs.xml ] || [ -f phpcs.xml.dist ]); then
+            if grep -q "\"lint:php\"" composer.json; then
+              composer run lint:php
+            else
+              echo "No lint:php script found in composer.json. Skipping."
+            fi
+          else
+            echo "No PHP linting configuration found. Skipping."
+          fi
+          
+      - name: Lint JavaScript
+        run: |
+          if [ -f package.json ] && ([ -f .eslintrc.js ] || [ -f .eslintrc.json ]); then
+            npm run lint:js || echo "Lint script not found in package.json. Skipping."
+          else
+            echo "No JS linting configuration found. Skipping."
+          fi
+          
+  build:
+    name: Build Plugin
+    runs-on: ubuntu-latest
+    needs: lint
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        
+      - name: Check for package-lock.json in build
+        id: check-lockfile-build
+        run: |
+          if [ -f "package-lock.json" ]; then
+            echo "lockfile_exists=true" >> $GITHUB_OUTPUT
+          else
+            echo "lockfile_exists=false" >> $GITHUB_OUTPUT
+            echo "package-lock.json not found. Caching will be skipped."
+          fi
+        
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '16'
+          # Use conditional caching based on package-lock.json existence
+          cache: ${{ steps.check-lockfile-build.outputs.lockfile_exists == 'true' && 'npm' || '' }}
+          cache-dependency-path: |
+            **/package-lock.json
+            !**/node_modules/
+          
+      - name: Setup PHP
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: '7.4'
+          tools: composer:v2
+          
+      - name: Install dependencies
+        run: |
+          if [ -f composer.json ]; then
+            # Configure platform to ensure compatibility
+            composer config platform.php 7.4
+            composer install --no-dev --prefer-dist --no-progress || {
+              echo "Standard install failed, trying with --ignore-platform-reqs"
+              composer install --no-dev --prefer-dist --no-progress --ignore-platform-reqs
+            }
+          else
+            echo "No composer.json found. Skipping composer install."
+          fi
+          
+          if [ -f package.json ]; then
+            npm ci || npm install
+          else
+            echo "No package.json found. Skipping npm install."
+          fi
+          
+      - name: Build frontend assets
+        run: |
+          if [ -f package.json ]; then
+            if grep -q "\"build\"" package.json; then
+              npm run build
+            else
+              echo "No build script found in package.json. Skipping."
+            fi
+          else
+            echo "No package.json found. Skipping build."
+          fi
+        
+      - name: Create plugin package
+        run: |
+          mkdir -p build/simple-wp-optimizer
+          
+          # Copy main plugin file
+          cp simple-wp-optimizer.php build/simple-wp-optimizer/
+          
+          # Copy directories if they exist
+          [ -d assets ] && cp -r assets build/simple-wp-optimizer/ || echo "No assets directory found"
+          [ -d includes ] && cp -r includes build/simple-wp-optimizer/ || echo "No includes directory found"
+          [ -d languages ] && cp -r languages build/simple-wp-optimizer/ || echo "No languages directory found"
+          [ -d templates ] && cp -r templates build/simple-wp-optimizer/ || echo "No templates directory found"
+          
+          # Copy additional files if they exist
+          [ -f readme.txt ] && cp readme.txt build/simple-wp-optimizer/ || echo "No readme.txt found"
+          [ -f LICENSE ] && cp LICENSE build/simple-wp-optimizer/ || echo "No LICENSE file found"
+          
+          # Create zip file
+          cd build
+          zip -r simple-wp-optimizer.zip simple-wp-optimizer
+          
+      - name: Upload build artifact
+        uses: actions/upload-artifact@v4
+        with:
+          name: simple-wp-optimizer
+          path: build/simple-wp-optimizer.zip
diff --git a/.github/workflows/wordpress-plugin-check.yml b/.github/workflows/wordpress-plugin-check.yml
@@ -0,0 +1,81 @@
+name: WordPress Plugin Check
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+  # Allow manually triggering the workflow
+  workflow_dispatch:
+
+# Cancels all previous workflow runs for the same branch that have not yet completed
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+permissions:
+  contents: read
+  issues: write
+
+jobs:
+  plugin-check:
+    name: WordPress Plugin Check
+    runs-on: ubuntu-latest
+    
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+      
+      - name: Setup PHP
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: '8.0'
+          extensions: mysqli, curl, zip, intl, gd, mbstring, fileinfo, xml
+          coverage: none
+          tools: composer:v2
+      
+      - name: Install Composer dependencies
+        uses: ramsey/composer-install@v3
+        with:
+          dependency-versions: highest
+          composer-options: "--prefer-dist --no-progress"
+      
+      - name: WordPress Plugin Check
+        uses: WordPress/plugin-check-action@v1.1.2
+        with:
+          # Build directory - using repository root
+          build-dir: './'
+          
+          # Configure which categories to check
+          categories: |
+            accessibility
+            general
+            performance
+            plugin_repo
+            security
+          
+          # Whether to include experimental checks
+          include-experimental: false
+          
+          # Don't ignore warnings or errors
+          ignore-warnings: false
+          ignore-errors: false
+          
+          # WordPress version to use
+          wp-version: 'latest'
+      
+      - name: Create issue on plugin check failure
+        if: ${{ failure() }}
+        uses: JasonEtco/create-an-issue@v2
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          RUN_ID: ${{ github.run_id }}
+          WORKFLOW_URL: ${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}
+        with:
+          filename: .github/ISSUE_TEMPLATE/plugin-check-failure.md
+          update_existing: false
+          
+      - name: Mark job as failed after issue creation
+        if: ${{ failure() }}
+        run: |
+          echo "::error::WordPress Plugin Check failed. Created issue for tracking."
+          exit 1
diff --git a/.github/workflows/wp-tested-updater.yml b/.github/workflows/wp-tested-updater.yml
@@ -0,0 +1,26 @@
+name: WordPress Version Checker
+
+on:
+  push:
+    branches: [ main ]
+  schedule:
+    - cron: '0 0 * * 0' # Run once a week on Sunday at midnight
+  workflow_dispatch: # Allow manual triggering
+
+permissions:
+  issues: write    # Required for creating issues about WordPress version mismatches
+  contents: read   # Required for reading repository content including readme.txt
+  pull-requests: write  # Required for creating PRs to update WordPress version compatibility
+
+jobs:
+  wordpress-version-checker:
+    name: WordPress version checker
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: WordPress version checker
+        uses: skaut/wordpress-version-checker@v2.2.3
+        with:
+          repo-token: ${{ secrets.GITHUB_TOKEN }}
