chore(ci): modernize

Author: avivkeller

.cspell.json

@@ -2,6 +2,7 @@
   "version": "0.2",
   "language": "en,en-gb",
   "words": [
+    "amannn",
     "apos",
     "camelcase",
     "tapable",
@@ -67,7 +68,6 @@
     "hoge",
     "subsubcomain",
     "noselect",
-    "commitlint",
     "eslintcache",
     "hono",
     "privkey",

.github/dependabot.yml

@@ -12,3 +12,12 @@ updates:
       dependencies:
         patterns:
           - "*"
+  - package-ecosystem: github-actions
+    directory: "/"
+    schedule:
+      interval: monthly
+    open-pull-requests-limit: 3
+    groups:
+      dependencies:
+        patterns:
+          - "*"

.github/workflows/ci.yml

@@ -0,0 +1,94 @@
+name: webpack-dev-server
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+
+permissions:
+  contents: read
+
+jobs:
+  lint:
+    name: Lint & Check Types
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
+
+      - name: Setup Node.js
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
+        with:
+          node-version: "lts/*"
+          cache: "npm"
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Lint
+        run: npm run lint
+
+      - name: Build types
+        run: npm run build:types
+
+      - name: Check types
+        run: |
+          if [ -n "$(git status types --porcelain)" ]; then
+            echo "Missing types. Update types by running 'npm run build:types'";
+            exit 1;
+          fi
+  test:
+    name: Test - ${{ matrix.os }} (Node.js ${{ matrix.node-version }})
+
+    strategy:
+      fail-fast: false
+      matrix:
+        os: [ubuntu-latest, windows-latest, macos-latest]
+        node-version: [18.x, 20.x, 22.x, 24.x]
+
+    runs-on: ${{ matrix.os }}
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
+
+      - name: Setup Node.js ${{ matrix.node-version }}
+        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
+        with:
+          node-version: ${{ matrix.node-version }}
+          cache: "npm"
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Setup firefox
+        if: matrix.os != 'windows-latest'
+        uses: browser-actions/setup-firefox@5914774dda97099441f02628f8d46411fcfbd208 # v1.7.0
+        with:
+          firefox-version: latest
+
+      - name: Link webpack-dev-server
+        run: |
+          cp -R client tmp-client
+          npm link --ignore-scripts || true
+          npm link webpack-dev-server --ignore-scripts || true
+          rm -r client
+          cp -R tmp-client client
+
+      - name: Run tests
+        run: npm run test:coverage -- --ci
+
+      - name: Upload coverage to Codecov
+        if: always()
+        uses: codecov/codecov-action@671740ac38dd9b0130fbe1cec585b89eea48d3de # v5.5.2
+        with:
+          files: ./coverage/lcov.info
+
+      - name: Upload test results to Codecov
+        if: always()
+        uses: codecov/codecov-action@671740ac38dd9b0130fbe1cec585b89eea48d3de # v5.5.2
+        with:
+          files: ./junit.xml
+          report_type: test_results

.github/workflows/dependency-review.yml

@@ -1,5 +1,14 @@
-name: "Dependency Review"
-on: [pull_request]
+# Dependency Review Action
+#
+# This Action will scan dependency manifest files that change as part of a Pull Request,
+# surfacing known-vulnerable versions of the packages declared or updated in the PR.
+# Once installed, if the workflow run is marked as required,
+# PRs introducing known-vulnerable packages will be blocked from merging.
+#
+# Source repository: https://github.com/actions/dependency-review-action
+name: Review Dependencies
+
+on: pull_request
 
 permissions:
   contents: read
@@ -8,7 +17,8 @@ jobs:
   dependency-review:
     runs-on: ubuntu-latest
     steps:
-      - name: "Checkout Repository"
-        uses: actions/checkout@v4
-      - name: "Dependency Review"
-        uses: actions/dependency-review-action@v4
+      - name: Git Checkout
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
+
+      - name: Review Dependencies
+        uses: actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # v4.8.2

.github/workflows/nodejs.yml

@@ -0,0 +1,19 @@
+name: Check PR title
+
+on:
+  pull_request_target:
+    types:
+      - opened
+      - reopened
+      - edited
+
+jobs:
+  main:
+    name: Validate PR title
+    runs-on: ubuntu-latest
+    permissions:
+      pull-requests: read
+    steps:
+      - uses: amannn/action-semantic-pull-request@48f256284bd46cdaab1048c3721360e808335d50 # v6.1.1
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/validate-pr-title.yml

@@ -45,6 +45,8 @@ If you are modifying a file in the `client/` directory, be sure to run `npm run
 
 Our commit messages format follows the [angular.js commits format](https://github.com/angular/angular.js/blob/master/DEVELOPERS.md#commits).
 
+For pull requests, the commit message guidelines must apply to the PR title.
+
 We don't use the scope. The template of a commit would look like this:
 
 ### Commit Message Format