DEVX-796: merging main

Author: ShipilA

.git-blame-ignore-revs

@@ -28,3 +28,5 @@ f00f4fe6ed5e22cdd2e3f68370c2da96e6bbc8e7
 53b9d9cc4fc4091b89f84effb6e526371d3bae68
 383b1b8dee10fbed5dab6566ea0fe49caf9e15b4
 f6aab9d10212756b1d71a0568c706a9df51c322d
+4822581aeff072b7649c7aec56a13a95bd58c249
+eb09ce06943ccb460981afaa6b5ecfd54f8f87e2

.github/workflows/ci.yml

@@ -160,7 +160,7 @@ jobs:
         run: ./gradlew codeCoverageReport
 
       - name: Send code coverage report to Codecov.io
-        uses: codecov/codecov-action@18283e04ce6e62d37312384ff67231eb8fd56d24 # v5.4.3
+        uses: codecov/codecov-action@75cd11691c0faa626561e295848008c8a7dddffe # v5.5.4
         with:
             token: ${{ secrets.CODECOV_TOKEN }}
   docs:

.github/workflows/codeql.yml

@@ -54,7 +54,7 @@ jobs:
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@39edc492dbe16b1465b0cafca41432d857bdb31a # v3.29.1
+      uses: github/codeql-action/init@03e4368ac7daa2bd82b3e85262f3bf87ee112f57 # v3.36.0
       with:
         languages: ${{ matrix.language }}
         # If you wish to specify custom queries, you can do so here or in a config file.
@@ -68,7 +68,7 @@ jobs:
     # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift).
     # If this step fails, then you should remove it and run the build manually (see below)
     - name: Autobuild
-      uses: github/codeql-action/autobuild@39edc492dbe16b1465b0cafca41432d857bdb31a # v3.29.1
+      uses: github/codeql-action/autobuild@03e4368ac7daa2bd82b3e85262f3bf87ee112f57 # v3.36.0
 
     # ℹ️ Command-line programs to run using the OS shell.
     # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -81,6 +81,6 @@ jobs:
     #     ./location_of_script_within_repo/buildscript.sh
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@39edc492dbe16b1465b0cafca41432d857bdb31a # v3.29.1
+      uses: github/codeql-action/analyze@03e4368ac7daa2bd82b3e85262f3bf87ee112f57 # v3.36.0
       with:
         category: "/language:${{matrix.language}}"

.github/workflows/release-fix.yml

@@ -0,0 +1,130 @@
+on:
+  workflow_dispatch:
+      inputs:
+          version:
+              description: 'SDK version'
+              required: true
+
+name: ReleaseFix
+
+# Declare default permissions as read only.
+permissions: read-all
+
+jobs:
+  update_readme:
+    runs-on: ubuntu-latest
+
+    steps:
+      # Get GitHub token via the CT SDKs App
+      - name: Generate GitHub token (via CT SDKs App)
+        id: generate_github_token
+        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2
+        with:
+          app-id: ${{ secrets.CT_SDKS_APP_ID }}
+          private-key: ${{ secrets.CT_SDKS_APP_PEM }}
+
+      - name: Get App user
+        id: get_app_user
+        env:
+          GITHUB_TOKEN: ${{ steps.generate_github_token.outputs.token }}
+        run: |
+          export GH_APP_USER=`gh api /users/ct-sdks%5Bbot%5D | jq .id`
+          echo "email=${GH_APP_USER}+ct-sdks[bot]@users.noreply.github.com" >> "$GITHUB_OUTPUT"
+
+      - name: Checkout
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
+        with:
+            ref: main
+            token: ${{ steps.generate_github_token.outputs.token }}
+
+      - uses: gradle/actions/wrapper-validation@0723195856401067f7a2779048b490ace7a47d7c # v5.0.2
+
+      - run: ./gradlew -Pversion=$VERSION writeVersionToExamples writeVersionToReadme setVersion nextMinorVersion snapshotVersion
+        env:
+            VERSION: ${{ github.event.inputs.version }}
+
+      - name: "Switch SDK to after release branch"
+        run: |
+            git fetch --depth=1 origin after-release || true
+            git checkout -B after-release origin/after-release || true
+            git checkout -B after-release
+            git log -1
+
+      - name: "update changelog"
+        run: |
+            gh api /repos/commercetools/commercetools-sdk-java-v2/releases --paginate > releases.json
+            node scripts/changelog.js > CHANGELOG.md
+            rm -rf releases.json
+        env:
+          GH_TOKEN: ${{ steps.generate_github_token.outputs.token }}
+
+      - name: "remove API reference commit SHA"
+        run: rm -rf reference.txt
+        continue-on-error: true
+
+      - uses: stefanzweifel/git-auto-commit-action@778341af668090896ca464160c2def5d1d1a3eb0 # v6.0.1
+        with:
+          branch: after-release
+          commit_message: "TASK: Updating version in README"
+          commit_author: ct-sdks[bot] <${{ steps.get_app_user.outputs.email }}>
+          commit_user_name: ct-sdks[bot]
+          commit_user_email: ${{ steps.get_app_user.outputs.email }}
+
+  docs:
+    name: Build and release docs
+
+    runs-on: ubuntu-latest
+    steps:
+      # Get GitHub token via the CT SDKs App
+      - name: Generate GitHub token (via CT SDKs App)
+        id: generate_github_token
+        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2
+        with:
+          app-id: ${{ secrets.CT_SDKS_APP_ID }}
+          private-key: ${{ secrets.CT_SDKS_APP_PEM }}
+
+      - name: Get App user
+        id: get_app_user
+        env:
+          GITHUB_TOKEN: ${{ steps.generate_github_token.outputs.token }}
+        run: |
+          export GH_APP_USER=`gh api /users/ct-sdks%5Bbot%5D | jq .id`
+          echo "email=${GH_APP_USER}+ct-sdks[bot]@users.noreply.github.com" >> "$GITHUB_OUTPUT"
+
+      - name: Checkout
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
+        with:
+          path: sdk
+          token: ${{ steps.generate_github_token.outputs.token }}
+
+      - name: Checkout
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
+        with:
+          path: doc
+          ref: gh-pages
+          token: ${{ steps.generate_github_token.outputs.token }}
+
+      - name: Setup Java
+        uses: actions/setup-java@be666c2fcd27ec809703dec50e508c2fdc7f6654 # v5
+        with:
+          distribution: 'temurin'
+          java-version: '17'
+
+      - name: Setup Graphviz
+        uses: ts-graphviz/setup-graphviz@b1de5da23ed0a6d14e0aeee8ed52fdd87af2363c # v2.0.2
+
+      - run: ./gradlew -Pversion=$VERSION alljavadoc
+        working-directory: sdk
+        env:
+            VERSION: ${{ github.event.inputs.version }}
+
+
+      - run: rsync -r sdk/build/docs/javadoc/ doc/javadoc
+
+      - uses: stefanzweifel/git-auto-commit-action@778341af668090896ca464160c2def5d1d1a3eb0 # v6.0.1
+        with:
+          repository: doc
+          commit_message: "Update javadoc"
+          commit_author: ct-sdks[bot] <${{ steps.get_app_user.outputs.email }}>
+          commit_user_name: ct-sdks[bot]
+          commit_user_email: ${{ steps.get_app_user.outputs.email }}

.github/workflows/semgrep.yml

@@ -36,7 +36,7 @@ jobs:
             - name: Run Semgrep
               run: semgrep scan --sarif --output=semgrep.sarif --config=p/auto --config=p/dockerfile --config=p/typescript --config=p/javascript --config=p/java --metrics=off --verbose
             - name: Upload SARIF file for GitHub Advanced Security Dashboard
-              uses: github/codeql-action/upload-sarif@39edc492dbe16b1465b0cafca41432d857bdb31a # v3.29.1
+              uses: github/codeql-action/upload-sarif@03e4368ac7daa2bd82b3e85262f3bf87ee112f57 # v3.36.0
               with:
                   sarif_file: semgrep.sarif
               if: always()