fix(org): update org identity from williaby to ByronWilliamsCPA

[williaby]

Summary

• Rewrites `profile/README.md` with correct org name, plain-text headings (no emojis), and valid `github.com/ByronWilliamsCPA/.github` links (G001, G009)
• Replaces `@williaby` with `@ByronWilliamsCPA` in `CODEOWNERS` (G001)
• Updates org references in `CODE_OF_CONDUCT.md`, `GOVERNANCE.md`, `SUPPORT.md`, `FUNDING.yml`, `ISSUE_TEMPLATE/config.yml`, `pull_request_template.md` (G001)
• Replaces invalid `@williaby.com` email addresses with the private Security Advisory channel in `CODE_OF_CONDUCT.md`, and with GitHub Issues/Discussions references in `GOVERNANCE.md`, `SUPPORT.md`
• Fixes org references in `examples/`, `docs/workflows/`, `QLTY_INTEGRATION.md`
• Removes dead links to `CONVERSION_ACTION_PLAN.md` and `ACTION_SHA_REFERENCE.md` from `README.md` (G003)
• Removes inapplicable `pip install`, `black`, `npm install`, `npm test` from `CONTRIBUTING.md` (G005); adds `uv sync` dependency install step
• Updates `REUSE.toml` copyright year to `2025-2026` (G008)

No dependencies -- this branch is based on `main` and can merge independently.

Test plan

• `grep -rn "williaby" profile/README.md CODE_OF_CONDUCT.md GOVERNANCE.md SUPPORT.md FUNDING.yml CODEOWNERS ISSUE_TEMPLATE/config.yml CONTRIBUTING.md pull_request_template.md README.md REUSE.toml QLTY_INTEGRATION.md docs/workflows/ examples/` returns no output
• `grep "CONVERSION_ACTION_PLAN|ACTION_SHA_REFERENCE" README.md` returns no output
• `grep "pip install|npm install|black" CONTRIBUTING.md` returns no output
• `grep "FileCopyrightText" REUSE.toml` shows `2025-2026`
• All links in `profile/README.md` resolve to existing paths
• `CODE_OF_CONDUCT.md` reporting path points to Security Advisories (private channel)

Generated with Claude Code

Summary by CodeRabbit

• Documentation

  • Updated workflow examples and integration guides for the organization restructure.
  • Refreshed contribution guidelines with updated Python tooling recommendations.
  • Updated code of conduct reporting to use GitHub's security advisory channel.

• Chores

  • Rebranded repository references and configuration files.
  • Extended copyright year to 2025–2026.
  • Consolidated support and governance contact channels.
  • Removed outdated documentation references.

[coderabbitai]

Warning

Rate limit exceeded

@williaby has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 50 minutes and 21 seconds before requesting another review.

You’ve run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 0add2318-9eeb-461c-8f67-ae872e95612e

📥 Commits

Reviewing files that changed from the base of the PR and between c531e09 and a41dcae.

📒 Files selected for processing (1)

• .claude/settings.json

📝 Walkthrough

Walkthrough

Repository-wide organization identity rename from williaby to ByronWilliamsCPA across community health files, GitHub configuration, development documentation, reusable workflow references, and metadata. Includes minor developer tooling updates: Python formatter changed from black to ruff --fix, and dependency manager from pip to uv.

Changes

Organization Identity Rename

Layer / File(s)	Summary
Community Health & Contact Configuration .github/CODEOWNERS, CODE_OF_CONDUCT.md, SUPPORT.md, GOVERNANCE.md, FUNDING.yml, ISSUE_TEMPLATE/config.yml	Code ownership, conduct reporting, support routing, and funding configuration updated to reference ByronWilliamsCPA; reporting and support contact methods shifted from email to GitHub Discussions/Security Advisory channels.
Developer Tools & Contribution Workflow CONTRIBUTING.md	Python tooling guidance updated: black replaced with ruff --fix for formatting and linting; dependency installation changed from pip install -r requirements.txt to uv sync; organization references also updated.
Quality Integration Platform Configuration QLTY_INTEGRATION.md	Comprehensive integration guide rewritten to reference ByronWilliamsCPA organization: secret setup instructions, reusable workflow examples (python-ci.yml, qlty-check.yml), and integration patterns all point to the new org paths.
Reusable Workflow Documentation docs/workflows/NEW_WORKFLOWS_SUMMARY.md, docs/workflows/python-fuzzing.md, docs/workflows/python-sonarcloud.md	Centralized workflow documentation updated: all reusable workflow uses: references and support links changed from williaby/.github to ByronWilliamsCPA/.github across fuzzing, SonarCloud, CI, and quality-gates examples.
Workflow Example Files & Migration Guide examples/fuzzing-*.yml, examples/fuzzing-migration-example.md	GitHub Actions workflow examples and the fuzzing migration guide updated to reference ByronWilliamsCPA/.github workflows: custom directory, multi-sanitizer, PR manual, and weekly patterns all point to the new organization.
Organization Profile & Project Metadata profile/README.md, CHANGELOG.md, REUSE.toml, pull_request_template.md, README.md	Organization profile README rewritten with new org identity and simplified structure; changelog documents the rename; copyright year extended to 2025-2026; PR template points to centralized .github repository; outdated documentation links removed from README.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

Possibly related issues

• fix(ci): migrate sonarcloud to org reusable workflow and correct sonarcloud-organization fragrance-rater#2: Both PRs modify reusable-workflow uses: references and organization-related variables in CI workflow YAMLs (e.g., sonarcloud/sonar-organization).
• fix(ci): migrate sonarcloud to org reusable workflow and correct sonarcloud-organization audio-processor#8: Both PRs update GitHub Actions workflow references, particularly the python-sonarcloud uses: target and organization-related CI settings.

Possibly related PRs

• ByronWilliamsCPA/.github#47: Both PRs update williaby → ByronWilliamsCPA in reusable GitHub Actions workflow reference strings across uses: statements and YAML examples.

Poem

🐰 From williaby's burrows, we hop to new terrain,
ByronWilliamsCPA blooms, a fresh domain!
With ruff and uv in our toolkit so fine,
Community paths and workflows align,
Organization reborn—hop along the vine! 🌿

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The PR description provides a detailed summary of changes with specific file references, test plan items, and includes related issue context. However, it does not follow the required template structure with sections like 'Type of Change', 'Changes Made', 'Testing', and 'Checklist'.	Restructure the description to follow the official PR template: add 'Type of Change' checkboxes, use 'Changes Made' section for bullet points, and include a completed 'Checklist' section.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly and concisely summarizes the main change: updating the organization identity from williaby to ByronWilliamsCPA across the repository.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch claude/compliance-org-identity-6

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[Copilot]

Pull request overview

Updates organization identity from williaby to ByronWilliamsCPA across community health files, examples, and documentation. Also removes broken doc links, inapplicable setup instructions, replaces invalid @williaby.com emails with GitHub-native channels, and bumps the REUSE copyright year.

Changes:

• Replace williaby org references with ByronWilliamsCPA in docs, examples, templates, CODEOWNERS, FUNDING, and ISSUE_TEMPLATE config.
• Remove invalid @williaby.com mailto links from CODE_OF_CONDUCT.md, GOVERNANCE.md, SUPPORT.md, and rewrite profile/README.md without emojis and dead contact info.
• Clean up README.md (drop dead doc links), CONTRIBUTING.md (remove non-applicable pip/npm/black steps), and update REUSE.toml copyright to 2025-2026.

Reviewed changes

Copilot reviewed 20 out of 20 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
SUPPORT.md	Replace email support link with GitHub Issues/Discussions guidance.
REUSE.toml	Bump copyright year to 2025-2026.
README.md	Drop references to non-existent CONVERSION_ACTION_PLAN.md and ACTION_SHA_REFERENCE.md.
QLTY_INTEGRATION.md	Update all org references and example uses: workflow paths.
pull_request_template.md	Update central template URL to new org.
profile/README.md	Rewrite landing README with new org name, no emojis, plain headings.
ISSUE_TEMPLATE/config.yml	Update contact link URLs to new org.
GOVERNANCE.md	Update org name and replace governance email with Issues/Discussions.
FUNDING.yml	Update commented sponsorship usernames and contributing link.
examples/fuzzing-*.{yml,md}	Update reusable workflow uses: references in fuzzing examples.
docs/workflows/python-sonarcloud.md	Update uses: references to new org.
docs/workflows/python-fuzzing.md	Update uses: references to new org.
docs/workflows/NEW_WORKFLOWS_SUMMARY.md	Update uses: references and issue tracker link.
CONTRIBUTING.md	Drop black, pip install -r, and Node-specific steps; clarify ruff.
CODEOWNERS	Change default owner to @ByronWilliamsCPA.
CODE_OF_CONDUCT.md	Replace conduct email with Issues/Discussions reporting channel.

[williaby]

PR Review

Merge state: DIRTY — conflicts present. PR cannot be merged until resolved.

Critical (must fix before merge)

• [Merge conflict] Branch has merge conflicts (mergeable: false). Rebase on main or resolve conflicts manually before any other fixes apply.

• [CHANGELOG] CHANGELOG.md not updated. The fix(org): commit requires a ### Fixed entry in [Unreleased] covering the 19-file org identity rename.

• [CoC] CODE_OF_CONDUCT.md:47: Replacing the private email with "GitHub Issues or Discussions" contradicts the confidentiality guarantee in the next sentence. GitHub Issues are public. Use the Security Advisories link (https://github.com/ByronWilliamsCPA/.github/security/advisories/new) or a similar private channel instead.

Important (should fix)

• [PR desc] The Summary bullet "Updates reviewer usernames in .github/dependabot.yml" is inaccurate — that file is not in the diff and already contains ByronWilliamsCPA on main. Remove the bullet and correct the commit message body.

• [CONTRIBUTING] CONTRIBUTING.md:~80: After removing pip install -r requirements.txt, the Local Development Setup jumps from "activate venv" directly to "run pytest" with no dependency install step. Add a uv pip install -e . or equivalent instruction.

---

SonarQube: not configured for this repository (YAML/docs only).
CodeRabbit: rate-limited — review not completed.

🤖 Generated with Claude Code

[coderabbitai]

Actionable comments posted: 2

🧹 Nitpick comments (1)

CONTRIBUTING.md (1)

83-87: ⚡ Quick win

Add brief explanation or installation note for uv.

The instructions now use uv sync but don't explain what uv is or how to install it. New contributors unfamiliar with the uv package manager may be confused or blocked.

Consider adding a brief note before step 2, such as:

2. **Install dependencies** (requires [uv](https://github.com/astral-sh/uv))

Or add an installation step:

2. **Install uv** (if not already installed)

   ```bash
   pip install uv

3. Install dependencies

   uv sync

<details>
<summary>🤖 Prompt for AI Agents</summary>

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In @CONTRIBUTING.md around lines 83 - 87, Add a brief explanation and install
note for the uv tool referenced by the uv sync command: update the
CONTRIBUTING.md by prepending step 2 with a short parenthetical like "(requires
uv)" or a one-line install step that shows how to install uv (e.g., pip install uv or a pointer to the uv project) so readers know what uv is and how
to get it before running uv sync.

</details>

</blockquote></details>

</blockquote></details>

<details>
<summary>🤖 Prompt for all review comments with AI agents</summary>

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In @profile/README.md:

• Around line 37-39: Update the README link that currently points to "GitHub
  Security Advisories" to use the direct advisory creation URL for private
  vulnerability reports; locate the anchor text "GitHub Security Advisories" in
  the README (the link on line with "We take security seriously...") and replace
  its href with the GitHub new advisory creation URL so reporters land directly on
  the page to create a private security advisory.

In @SUPPORT.md:

• Around line 18-19: Update the "Contact" section text to avoid directing
  vulnerability reports to public channels: modify the line "Use GitHub Issues or
  Discussions for all inquiries." to clarify that general questions belong on
  Issues/Discussions but security or vulnerability reports must be sent privately
  (e.g., via the project's security contact or SECURITY.md process). Locate the
  "Contact" header and replace that single sentence with a two-part sentence
  that separates general inquiries from private security disclosures and
  references the private reporting channel or SECURITY.md.

---

Nitpick comments:
In @CONTRIBUTING.md:

• Around line 83-87: Add a brief explanation and install note for the uv tool
  referenced by the uv sync command: update the CONTRIBUTING.md by prepending
  step 2 with a short parenthetical like "(requires uv)" or a one-line install
  step that shows how to install uv (e.g., pip install uv or a pointer to the
  uv project) so readers know what uv is and how to get it before running uv sync.

</details>

<details>
<summary>🪄 Autofix (Beta)</summary>

Fix all unresolved CodeRabbit comments on this PR:

- [ ] <!-- {"checkboxId": "4b0d0e0a-96d7-4f10-b296-3a18ea78f0b9"} --> Push a commit to this branch (recommended)
- [ ] <!-- {"checkboxId": "ff5b1114-7d8c-49e6-8ac1-43f82af23a33"} --> Create a new PR with the fixes

</details>

---

<details>
<summary>ℹ️ Review info</summary>

<details>
<summary>⚙️ Run configuration</summary>

**Configuration used**: defaults

**Review profile**: CHILL

**Plan**: Pro

**Run ID**: `21e222cf-5421-4b34-8d05-e7ff663afd14`

</details>

<details>
<summary>📥 Commits</summary>

Reviewing files that changed from the base of the PR and between 4e28df86b4868349aec161bbdf55ace30d1fbd70 and c531e09eac5ec371ce311cc31406c8b6597fb235.

</details>

<details>
<summary>📒 Files selected for processing (21)</summary>

* `.github/CODEOWNERS`
* `CHANGELOG.md`
* `CODE_OF_CONDUCT.md`
* `CONTRIBUTING.md`
* `FUNDING.yml`
* `GOVERNANCE.md`
* `ISSUE_TEMPLATE/config.yml`
* `QLTY_INTEGRATION.md`
* `README.md`
* `REUSE.toml`
* `SUPPORT.md`
* `docs/workflows/NEW_WORKFLOWS_SUMMARY.md`
* `docs/workflows/python-fuzzing.md`
* `docs/workflows/python-sonarcloud.md`
* `examples/fuzzing-custom-directory.yml`
* `examples/fuzzing-migration-example.md`
* `examples/fuzzing-multi-sanitizer.yml`
* `examples/fuzzing-pr-manual.yml`
* `examples/fuzzing-weekly.yml`
* `profile/README.md`
* `pull_request_template.md`

</details>

<details>
<summary>💤 Files with no reviewable changes (1)</summary>

* README.md

</details>

</details>

<!-- This is an auto-generated comment by CodeRabbit for review status -->

[coderabbitai]

⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Use the direct advisory creation URL for vulnerability reports.

Line 38 currently links to the advisory list page. For faster and clearer private disclosure, point to the new advisory URL directly.

Suggested change

-We take security seriously. If you discover a vulnerability, please use the
-[GitHub Security Advisories](https://github.com/ByronWilliamsCPA/.github/security/advisories)
-to report it privately.
+We take security seriously. If you discover a vulnerability, please use the
+[GitHub Security Advisory form](https://github.com/ByronWilliamsCPA/.github/security/advisories/new)
+to report it privately.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	We take security seriously. If you discover a vulnerability, please use the
	[GitHub Security Advisories](https://github.com/ByronWilliamsCPA/.github/security/advisories)
	to report it privately.
	We take security seriously. If you discover a vulnerability, please use the
	[GitHub Security Advisory form](https://github.com/ByronWilliamsCPA/.github/security/advisories/new)
	to report it privately.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@profile/README.md` around lines 37 - 39, Update the README link that
currently points to "GitHub Security Advisories" to use the direct advisory
creation URL for private vulnerability reports; locate the anchor text "GitHub
Security Advisories" in the README (the link on line with "We take security
seriously...") and replace its href with the GitHub new advisory creation URL so
reporters land directly on the page to create a private security advisory.

[coderabbitai]

⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Narrow "all inquiries" to avoid public security disclosure routing.

"All inquiries" can be read as including vulnerability reports, which should stay on a private channel.

Suggested wording update

 - **Contact**
-  Use GitHub Issues or Discussions for all inquiries.
+  For general inquiries, use GitHub Issues or Discussions.
+  For security vulnerabilities, use private reporting via Security Advisories.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	- **Contact**
	Use GitHub Issues or Discussions for all inquiries.
	- **Contact**
	For general inquiries, use GitHub Issues or Discussions.
	For security vulnerabilities, use private reporting via Security Advisories.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@SUPPORT.md` around lines 18 - 19, Update the "**Contact**" section text to
avoid directing vulnerability reports to public channels: modify the line "Use
GitHub Issues or Discussions for all inquiries." to clarify that general
questions belong on Issues/Discussions but security or vulnerability reports
must be sent privately (e.g., via the project's security contact or SECURITY.md
process). Locate the "**Contact**" header and replace that single sentence with
a two-part sentence that separates general inquiries from private security
disclosures and references the private reporting channel or SECURITY.md.

[williaby]

pr-fix summary

Three findings from the pr-review pass addressed in commit c531e09:

CODE_OF_CONDUCT.md — reporting channel contradiction (Important)

Replaced the public GitHub Issues/Discussions link with the private Security Advisory channel. The original text pledged confidentiality in the same paragraph that directed reporters to a public forum — a direct contradiction.

CONTRIBUTING.md — dangling setup step (Important)

Added the missing uv sync step between venv activation and pytest. After the PR removed the pip install -r requirements.txt line, the local development setup section went directly from activating the venv to running tests with no way to install dependencies.

CHANGELOG.md — missing Fixed entry (Suggested)

Added a ### Fixed entry in [Unreleased] covering the 19-file org identity rename. Required by the fix(org): commit type convention.

Also done

• PR description updated: removed a false bullet claiming dependabot.yml was changed (it was already correct on main); expanded test plan grep to cover all 20 changed files; added CoC reporting channel check.
• Branch rebased onto current main (the DIRTY merge state was stale on GitHub's side — the rebase completed with zero conflicts).

All pre-commit hooks passed (including no-em-dash, markdownlint, detect-secrets).

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud