chore: workflows (#2)

Added GitHub actions workflows to implement CI, check PRs against
standards, scan for security vulnerabilities and to release to PyPI.

Also setup dependabot to automatically update Python and GitHub actions
dependencies.

Author: tmkujala

.github/CODEOWNERS

@@ -0,0 +1,3 @@
+# global code owners
+
+* @FactSet/enterprise-sdk

.github/dependabot.yml

@@ -0,0 +1,10 @@
+version: 2
+updates:
+  - package-ecosystem: pip
+    directory: '/'
+    schedule:
+      interval: daily
+  - package-ecosystem: github-actions
+    directory: '/'
+    schedule:
+      interval: daily

.github/pull_request_template.md

@@ -0,0 +1,42 @@
+### Description
+
+<!--
+Replace this comment block with detailed description detailed description
+of **what** is being changed and **why**.
+
+Here's an example of a good change description:
+
+Added the ability to notify users when a new blog post is made
+so that users can be made aware of new features as they become
+available.
+
+Used the subscription module to allow users to subscribe to
+the various product categories that they are interested in. Emails
+are being sent using the smtp module, configured to use FactSet's
+standard smtp server.
+-->
+
+### Links
+
+<!--
+Replace this comment block with relevant links to project trackers,
+like Jira, RPD or GitHub here. Example:
+
+* Fixes #1
+* Fixes #2
+-->
+
+### Testing
+
+<!--
+Replace this comment block with any testing instructions for reviewers. This is in
+addition to any acceptance criteria in an associated issue.
+-->
+
+### Checklist
+
+Ensure the following things have been met before requesting a review:
+
+* [ ] Follows all project developer guide and coding standards.
+* [ ] Tests have been written for the change, when applicable.
+* [ ] Confidential information (credentials, auth tokens, etc...) is not included.

.github/workflows/ci.yml

@@ -0,0 +1,68 @@
+name: CI
+
+on:
+  pull_request:
+    branches: [ main ]
+  push:
+    branches: [ main ]
+
+jobs:
+  build:
+    name: Build
+    runs-on: ubuntu-20.04
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v2
+
+      - name: Setup Python
+        uses: actions/setup-python@v3
+        with:
+          python-version: '3.9'
+
+      - name: Install Poetry
+        uses: snok/install-poetry@v1
+
+      - name: Install dependencies
+        run: poetry install
+
+      - name: Lint
+        run: poetry run black --check .
+
+      - name: Build
+        run: poetry build
+
+      # the `coverage xml -i` command is needed to re-write the
+      # coverage report with relative paths
+      - name: Test
+        run: |
+          poetry run pytest --cov src --cov-report xml tests
+          poetry run coverage xml -i
+
+  test:
+    name: Test
+    runs-on: ubuntu-20.04
+    strategy:
+      matrix:
+        python-version: [3.6, 3.7, 3.8, 3.9]
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v2
+
+      - name: Setup python
+        uses: actions/setup-python@v3
+        with:
+          python-version: '${{ matrix.python-version }}'
+
+      - name: Install Poetry
+        uses: snok/install-poetry@v1
+
+      - name: Install dependencies
+        run: poetry install
+
+      - name: Build
+        run: poetry build
+
+      - name: Test
+        run: poetry run tox

.github/workflows/codeql-analysis.yml

@@ -0,0 +1,40 @@
+name: "CodeQL"
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    # The branches below must be a subset of the branches above
+    branches: [ main ]
+  schedule:
+    - cron: '15 18 * * 5'
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-20.04
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [ 'python' ]
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v2
+
+    # Initializes the CodeQL tools for scanning.
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v1
+      with:
+        languages: ${{ matrix.language }}
+
+    - name: Autobuild
+      uses: github/codeql-action/autobuild@v1
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v1

.github/workflows/pr-checks.yml

@@ -0,0 +1,20 @@
+name: Pull request checks
+
+on:
+  pull_request:
+    types:
+      - opened
+      - edited
+      - synchronize
+      - reopened
+
+jobs:
+  check-title:
+    name: Check title
+    runs-on: ubuntu-20.04
+
+    steps:
+      - uses: naveenk1223/action-pr-title@v1.0.0
+        with:
+          regex: '^(chore|demo|deprecate|docs|feat|fix|perf|refactor|revert|style|test)(\(.+\))?: .+$'
+          max_length: 60

.github/workflows/publish.yml

@@ -0,0 +1,36 @@
+name: Publish
+
+on:
+  release:
+    types: [published]
+
+jobs:
+  deploy:
+    name: Deploy to package index
+    runs-on: ubuntu-20.04
+    env:
+      REPOSITORY_USERNAME: ${{ secrets.PYPI_USERNAME }}
+      REPOSITORY_PASSWORD: ${{ secrets.PYPI_PASSWORD }}
+      REPOSITORY_URL: ${{ secrets.PYPI_PUBLISH_URL }}
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v2
+
+      - name: Setup Python
+        uses: actions/setup-python@v3
+        with:
+          python-version: '3.9'
+
+      - name: Configure Poetry
+        run: |
+          poetry config repositories.publish $REPOSITORY_URL
+          poetry config http-basic.publish $REPOSITORY_USERNAME $REPOSITORY_PASSWORD
+
+      - name: Build
+        run: |
+          poetry build
+
+      - name: Publish
+        run: |
+          poetry publish -r publish