-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathproject.bootstrap.yaml
More file actions
213 lines (213 loc) · 5.88 KB
/
project.bootstrap.yaml
File metadata and controls
213 lines (213 loc) · 5.88 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
version: 1
project:
name: bootstrap
displayName: Bootstrap
description: Manifest-first control plane for repo scaffolding, GitHub governance, and portable
agent profiles.
visibility: public
owner: OMT-Global
defaultBranch: main
repo:
managedPaths: []
archetype:
kind: generic-empty
packageManager: npm
moduleName: bootstrap
github:
createRepo: true
reviewers:
- jmcte
codeowners:
- pattern: "*"
owners:
- "@jmcte"
issueLabels:
- name: area:frontend
color: 1f77b4
description: Frontend and user-interface work.
- name: area:api
color: 2ca02c
description: API contracts, endpoints, and integrations.
- name: area:data
color: 9467bd
description: Data models, persistence, migration, and analytics work.
- name: area:ledger
color: 8c564b
description: Ledger, accounting, transaction, or reconciliation work.
- name: area:rules
color: bcbd22
description: Domain rules, policy logic, and decision engines.
- name: area:ai
color: 17becf
description: AI, agents, prompts, and model integration work.
- name: area:infra
color: 7f7f7f
description: Infrastructure, CI, deployment, and operations work.
- name: area:security
color: d62728
description: Security-sensitive implementation or hardening work.
- name: area:accessibility
color: e377c2
description: Accessibility and inclusive UX work.
- name: area:qa
color: ff7f0e
description: Quality assurance, test coverage, and release validation.
- name: risk:low
color: 0e8a16
description: Low implementation or operational risk.
- name: risk:medium
color: fbca04
description: Moderate implementation or operational risk.
- name: risk:high
color: d93f0b
description: High implementation or operational risk.
- name: risk:domain
color: "5319e7"
description: Domain correctness risk requiring subject-matter review.
- name: risk:security
color: b60205
description: Security risk requiring explicit review.
- name: risk:prod
color: "000000"
description: Production impact or rollout risk.
- name: status:needs-spec
color: cfd3d7
description: Needs clearer scope, acceptance criteria, or constraints.
- name: status:ready-for-agent
color: 0e8a16
description: Ready for assigned agent implementation.
- name: status:agent-building
color: 1d76db
description: Agent implementation is in progress.
- name: status:needs-review
color: fbca04
description: Needs review before merge or closure.
- name: status:needs-human-approval
color: d93f0b
description: Needs explicit human approval before proceeding.
- name: status:ready-to-merge
color: 0e8a16
description: Ready to merge after required checks pass.
- name: status:blocked
color: b60205
description: Blocked by a dependency, decision, credential, or access gate.
- name: review:product
color: 0052cc
description: Needs product review.
- name: review:architecture
color: "5319e7"
description: Needs architecture review.
- name: review:security
color: b60205
description: Needs security review.
- name: review:tax
color: d4c5f9
description: Needs tax review.
- name: review:legal
color: c2e0c6
description: Needs legal review.
- name: review:accessibility
color: e99695
description: Needs accessibility review.
- name: review:release
color: f9d0c4
description: Needs release review.
organization:
defaultRepositoryPermission: read
membersCanCreateRepositories: false
membersCanCreatePublicRepositories: false
membersCanCreatePrivateRepositories: false
newRepositorySecurity:
dependabotAlerts: true
dependabotSecurityUpdates: true
dependencyGraph: true
secretScanning: true
secretScanningPushProtection: true
autoMerge: true
deleteBranchOnMerge: true
requiredApprovals: 1
requiredStatusChecks:
- CI Gate
dismissStaleReviews: true
requireCodeOwnerReviews: true
requireLastPushApproval: true
enforceLinearHistory: true
allowMergeCommit: true
allowSquashMerge: true
allowRebaseMerge: false
repoFeatures:
hasIssues: true
hasProjects: false
hasWiki: false
hasDiscussions: false
ci:
runnerPolicy: hybrid-safe
nodeVersion: "20"
pythonVersion: "3.12"
fastChecks:
- lint
- typecheck
- unit
- build
- secrets
extendedChecks:
- integration
- release-readiness
nightlyCron: 0 7 * * *
additionalWorkflows: []
dependabot:
enabled: true
securityUpdates: true
versionUpdates: true
ecosystems:
- packageEcosystem: npm
directory: /
interval: weekly
groupMinorAndPatch: true
ignoreMajorUpdates: true
- packageEcosystem: github-actions
directory: /
interval: weekly
groupMinorAndPatch: false
ignoreMajorUpdates: true
aiAttestation:
enabled: true
artifactName: ai-attestation
retentionDays: 90
provider: unknown
model: unknown
promptHash: unknown
reusableWorkflowRepo: OMT-Global/bootstrap
reusableWorkflowRef: refs/heads/main
release:
enabled: true
maturity: governed
tagPrefix: v
createGitHubRelease: true
updateMajorTag: true
updateMinorTag: true
reusableWorkflowRepo: OMT-Global/bootstrap
reusableWorkflowRef: refs/heads/main
agents:
manageCodexHome: true
codexProfile: default
sharedSkills: []
environments:
dev:
reviewers: []
requireApproval: false
preventSelfReview: false
branches: []
stage:
reviewers:
- jmcte
requireApproval: true
preventSelfReview: true
branches: []
prod:
reviewers:
- jmcte
requireApproval: true
preventSelfReview: true
branches:
- main