Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove the ability to customise classes across components #4

Closed
gvonkoss opened this issue Sep 28, 2018 · 10 comments
Closed

Remove the ability to customise classes across components #4

gvonkoss opened this issue Sep 28, 2018 · 10 comments

Comments

@gvonkoss
Copy link
Contributor

What

The ability to customise classes has not been consistent across our components. We want to create consistency, so are opening this discussion to figure out whether we should remove the customisation, or add it to all components.

Currently we are leaning toward removing the ability to customise.

Why

  • More readable SCSS and simpler JS.
  • Mixins can be used to include features without needing to wrap mixins in classes.
  • Encourages CSS reuse including a component once rather than multiple times with different class names.
  • Increase reliability and maintainability
@rowanbeentje
Copy link
Contributor

What's the ability to customise classes - got a short example or the calls used by the components which do support it? Is this like the new Overlay('overlay', { class: 'o-overlay--my-modifier' }) which adds an extra class to enable more targeting, or something else?

@gvonkoss
Copy link
Contributor Author

🙈and 🤔
we were referring to situations like:

@include oMessage($class: my-message) 

//output
.my-message {
    property: value;
}

I think it would involve some work to break out modifiers and such, but we're trying to get a feel for the general consensus

@notlee notlee mentioned this issue Oct 2, 2018
Merged
2 tasks
@dan-searle
Copy link
Contributor

I'm in favour of removing this ability. Is there a particular use case it was introduced for?

@notlee
Copy link
Contributor

notlee commented Oct 2, 2018

@dan-searle Not that's known to me. It might be useful for using a component to build a new component, but we can still provide mixins which include no classes, oNormaliseVisuallyHidden is a good example .

@i-like-robots
Copy link
Contributor

I'm in favour of removing this too because it seems obtuse and is little, if ever, used.

@rowanmanning
Copy link
Member

Had a quick chat with @wheresrhys on this, wondered whether he'd have some history. We came up with some potential reasons why you might do this:

  • class name shortening
  • vanity
  • retrofitting origami to sites where the dev has limited ability to edit the html

Going to look through some old issues and commits to see if I can find the real reasons

@notlee
Copy link
Contributor

notlee commented Oct 3, 2018
edited
Loading

retrofitting origami to sites where the dev has limited ability to edit the html

Good thoughts. That sounded like a compelling reason but actually doesn't really apply here as usually we only allow modifying the block portion of the class, not element or modifier portions.

@gvonkoss gvonkoss mentioned this issue Oct 8, 2018
Merged
20 tasks
@notlee
Copy link
Contributor

notlee commented Oct 12, 2018

For the reasons above, we're decided to start removing the ability to customise the base class of Origami components. Thanks for your input everyone 👍

@notlee notlee closed this as completed Oct 12, 2018
@gvonkoss gvonkoss mentioned this issue Nov 28, 2018
Closed
@notlee notlee mentioned this issue Nov 30, 2018
Merged
@gvonkoss gvonkoss mentioned this issue Dec 4, 2018
Closed
notlee added a commit to Financial-Times/o-layout that referenced this issue Dec 14, 2018
@notlee
Remove the ability to customise the base class name o-layout.
1fab8a0 
Also updates README and adds a migration guide ready for v3.
Accepted proposal: Financial-Times/origami#4
notlee added a commit to Financial-Times/o-layout that referenced this issue Dec 17, 2018
@notlee
Remove the ability to customise the base class name o-layout. (#40)
ccf6a4a 
* Remove the ability to customise the base class name `o-layout`.

Also updates README and adds a migration guide ready for v3.
Accepted proposal: Financial-Times/origami#4
@notlee notlee reopened this Jun 26, 2019
This was referenced Aug 23, 2019
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Open
This was referenced Aug 29, 2019
Closed
Closed
Closed
Closed
Closed
Closed
Closed
notlee added a commit to Financial-Times/origami-build-tools that referenced this issue Oct 15, 2019
@notlee
Remove custom class name variable from Sass boilerplate.
e1889b3 
Relates to proposal: Financial-Times/origami#4
And the major cascade project, where we are removing custom Sass classes:
https://github.com/orgs/Financial-Times/projects/77
@notlee notlee mentioned this issue Oct 15, 2019
Merged
notlee added a commit to Financial-Times/origami-build-tools that referenced this issue Oct 15, 2019
@notlee
Remove custom class name variable from Sass boilerplate.
5f7b868 
Relates to proposal: Financial-Times/origami#4
And the major cascade project, where we are removing custom Sass classes:
https://github.com/orgs/Financial-Times/projects/77
notlee added a commit to Financial-Times/origami-build-tools that referenced this issue Oct 15, 2019
@notlee
Remove custom class name variable from Sass boilerplate. (#613)
a4fa90d 
* Remove custom class name variable from Sass boilerplate.

Relates to proposal: Financial-Times/origami#4
And the major cascade project, where we are removing custom Sass classes:
https://github.com/orgs/Financial-Times/projects/77

* Correct Sass boilerplate comment
@notlee notlee mentioned this issue Oct 18, 2019
Closed
10 tasks
@notlee notlee mentioned this issue Nov 20, 2019
Closed
10 tasks
@notlee notlee mentioned this issue Jan 22, 2020
Closed
@notlee
Copy link
Contributor

notlee commented Feb 13, 2020

This was done. No Origami maintained components allow class customisation in this way. I don't think it's something to specially spec against though, especially if we spec how we should customise components, and would like to close this issue. Thoughts @Financial-Times/origami-core?

@JakeChampion
Copy link
Contributor

@notlee Agree, let's close this :-)

@chee chee closed this as completed Feb 18, 2020
notlee pushed a commit that referenced this issue Mar 6, 2020
@rowanmanning
Add component data to the repo (#4)
aa80b1a 
This auto-generates component data when a new commit appears on master,
only updating if the data has changed. This gets around the fact that
Jekyll cannot access repo data directly.

You can now access component versions in the markdown, e.g:

```
{{site.data.components.o-layout.version}}
```
@notlee notlee mentioned this issue May 18, 2021
Closed
chee pushed a commit that referenced this issue Sep 15, 2021
@alicebartlett
Merge pull request #4 from Financial-Times/pa11y-test
fde4eae 
Ensure pa11y demo exists to run tests against
JakeChampion pushed a commit that referenced this issue Sep 16, 2021
@rowanmanning
Ignore headings which don't have IDs (#6)
c253823 
This resolves #4
@notlee notlee mentioned this issue Sep 17, 2021
Open
chee pushed a commit that referenced this issue Sep 23, 2021
@rowanmanning
Switch to CircleCI 2 (#4)
0f14f7e
chee pushed a commit that referenced this issue Sep 23, 2021
@JakeChampion
Merge pull request #4 from Financial-Times/dependabot-automerge
5ca331c
chee added a commit that referenced this issue Sep 23, 2021
@chee
Rename package to remove -readme (#4)
39c8986
chee added a commit that referenced this issue Sep 23, 2021
@chee @JakeChampion
@notlee @dependabot-preview @dependabot @actions-user @origamiserviceuser
chore: bring component lint config presets into the repo (#310)
3715572 
* Add origami-version GitHub Action

When this is merged, we can have automated releases by using the release-type labels "major"/"minor"/"patch" on a pull-request before merging the pull-request.

* Update config.js

* Update automatic-tag-and-release.yml

* 2.0.0

* 2.0.1

* Move from CircleCI to GitHub Actions

* Update publish-to-npm.yml

* Update automatic-tag-and-release.yml

* Update config.test.js

* only run on prs

* Initial commit.

Rules taken from [origami-build-tools
v10](https://github.com/Financial-Times/origami-build-tools/blob/a931d2d8c8617a5309484d6624a078016866b3db/config/.stylelintrc.json).

* Plugins are dependencies, not devDependencies.

* Allow function arguments to go on a new line.

This should be valid:
```scss
.argument-newline {
	@include baz(
		'Lorem ipsum dolor sit amet consectetur adipisicing elit.',
		'Lorem ipsum dolor sit amet consectetur adipisicing.'
	);
}
```

* Allow `@include oGridRespondTo` after declarations.

The output of `oGridRespondTo` is a media query.

* Allow newlines in declarations and in and round function arguments.

This is useful for formatting functions with large arguments in a
readable way:
```scss
$some-very-very-very-large-conditional: true;
$foreground-color: if(
	$some-very-very-very-large-conditional == true,
	"then each argument should go on a newline for readability",
	"otherwise each argument could be on the same line"
);
```

And for formatting declarations such as grid areas in a readable
way:
```scss
.foo-grid {
	grid-template-areas:
		"header header header"
		". sidebar ."
		". main ."
		"footer footer footer";
}
```

* Auto merge dependabot dev dependency PRs

https://github.com/Financial-Times/origami/issues/55

* Bump stylelint-scss from 3.17.1 to 3.17.2

Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.1 to 3.17.2.
- [Release notes](https://github.com/kristerkari/stylelint-scss/releases)
- [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md)
- [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.1...3.17.2)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Auto merge dependabot dev dependency PRs

https://github.com/Financial-Times/origami/issues/55

* Bump @financial-times/origami-service-makefile from 6.0.1 to 7.0.3

Bumps [@financial-times/origami-service-makefile](https://github.com/Financial-Times/origami-service-makefile) from 6.0.1 to 7.0.3.
- [Release notes](https://github.com/Financial-Times/origami-service-makefile/releases)
- [Commits](https://github.com/Financial-Times/origami-service-makefile/compare/v6.0.1...v7.0.3)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 7.1.2 to 7.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 7.1.2 to 7.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v7.1.2...v7.2.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 4.0.1 to 7.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 4.0.1 to 7.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v4.0.1...v7.2.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add Github Action to auto approve dependabot

So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55

* Add Github Action to auto approve dependabot

So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55

* Bump proclaim from 3.5.0 to 3.6.0

Bumps [proclaim](https://github.com/rowanmanning/proclaim) from 3.5.0 to 3.6.0.
- [Release notes](https://github.com/rowanmanning/proclaim/releases)
- [Commits](https://github.com/rowanmanning/proclaim/compare/3.5.0...3.6.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add Github Action to apply Origami type label

We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43

* Add Github Action to apply Origami type label

We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43

* initial commit

* Create npm-cit.yml

* add origami .github files

* Update README.md

* Add Github Action to apply Origami type label (#1)

* Add origami.json (#3)

* Bump stylelint-order from 4.0.0 to 4.1.0

Bumps [stylelint-order](https://github.com/hudochenkov/stylelint-order) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/hudochenkov/stylelint-order/releases)
- [Changelog](https://github.com/hudochenkov/stylelint-order/blob/master/CHANGELOG.md)
- [Commits](https://github.com/hudochenkov/stylelint-order/compare/4.0.0...4.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Rename package to remove -readme (#4)

* Improve licence linting (#6)

* Don't try to trim what is not there (#7)

* Improve handling of ToC with heading (#8)

* Bump mocha from 7.2.0 to 8.0.1

Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 7.2.0 to 8.0.1

Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump stylelint-scss from 3.17.2 to 3.18.0

Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.2 to 3.18.0.
- [Release notes](https://github.com/kristerkari/stylelint-scss/releases)
- [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md)
- [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.2...3.18.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* make dependabot ignore snyk updates

snyk does too many updates and it makes for too many pull-requests for origami to review

* only run on merged pull-requests

* add name to labels workflow

* [Security] Bump lodash from 4.17.15 to 4.17.19

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* [Security] Bump lodash from 4.17.15 to 4.17.19

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* update weekly instead of live because live is too noisy

* Expect to be in root when lint is run (#9)

* Bump mocha from 8.0.1 to 8.1.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 8.0.1 to 8.1.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add some keywords to the origami.json

* Bump mocha from 8.1.0 to 8.1.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 8.1.0 to 8.1.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add new rule `readme-has-general-usage`.

Check for the presence of a link to general component usage
documentation "https://origami.ft.com/docs/components".

Relates to: https://github.com/Financial-Times/origami/issues/59

Fixes: https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/13

* Update test/invalid/invalid-missing-general-usage/README.md

Co-authored-by: Jake Champion <me@jakechampion.name>

* Update `rules/readme-has-general-usage.js` indent and quotes

* Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63

* Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63

* Delete automerge.yml

* Bump actions/setup-node from v1 to v2.1.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824)

Signed-off-by: dependabot[bot] <support@github.com>

* add hack for vscode-remark-lint (#16)

* remove stray slash

* rewrite check for bower name existence

* add a hack for remark-lint

* Bump mocha from 8.1.1 to 8.1.2

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e)

Signed-off-by: dependabot[bot] <support@github.com>

* Update dependabot.yml

* Delete config.yml

* Create dependabot.yml

* Create automerge.yml

* add missing workflow files

* Bump actions/setup-node from v1 to v2.1.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.1 to 8.1.2

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2)

Signed-off-by: dependabot[bot] <support@github.com>

* Create dependabot.yml

* Create automerge.yml

* Add auto-approve dependabot workflow

* Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v1 to v2.1.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v1 to v2.1.1

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v1 to v2.1.1.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v1...851e2594e44b5f0a0f44a4b807f10eaba91b31b2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark from 12.0.0 to 12.0.1

Bumps [remark](https://github.com/remarkjs/remark) from 12.0.0 to 12.0.1.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/12.0.0...12.0.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark-cli from 8.0.0 to 8.0.1

Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.0 to 8.0.1.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.0...remark-cli@8.0.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.2 to 8.1.3

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.2 to 8.1.3

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3)

Signed-off-by: dependabot[bot] <support@github.com>

* Add linting rule to ensure relative imports always have a file extension

* Make the import extension rule be a warning to make this a non-breaking change

* Use word instead of number to mark the severity

* use words instead of numbers to mark the severity for rules (#38)

* Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.9.0 to v0.10.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.9.0 to v0.10.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 (#39)

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Update `automatic-tag-and-release`, consistent with components.

I'm wondering if it will somehow help this issue, though
I don't see how it would.
https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/24

Since `fetch-depth: 0` fetches all tags and branches, I wonder
if the step is needed at all
https://github.com/actions/checkout#fetch-all-history-for-all-tags-and-branches

* only run automerge on dependabot prs

* Make automerge only run on dependabot prs and not rebase anything

* Make automerge only run on dependabot prs and not rebase anything

* only run automerge on dependabot prs

* only run automerge on dependabot prs

* only run automerge on dependabot prs

* only run automerge on dependabot prs

* update to latest version of origami workflows

* update to latest version of origami workflows

* update to latest version of origami workflows

* add note about origami-build-tools to the readme (#29)

* Bump pascalgn/automerge-action from v0.10.0 to v0.11.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.10.0 to v0.11.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.10.0 to v0.11.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.1 to v2.1.2

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.1 to v2.1.2

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.1 to v2.1.2

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.11.0 to v0.12.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.11.0 to v0.12.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.11.0 to v0.12.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark-cli from 8.0.1 to 9.0.0

Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.1 to 9.0.0.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.1...remark-cli@9.0.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark from 12.0.1 to 13.0.0

Bumps [remark](https://github.com/remarkjs/remark) from 12.0.1 to 13.0.0.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/12.0.1...13.0.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.3 to 8.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.3 to 8.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf)

Signed-off-by: dependabot[bot] <support@github.com>

* Delete whitesource.config.json

* make the example codeblock use the correct config name

* Bump mocha from 8.2.0 to 8.2.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.2.0 to 8.2.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Set origamiType to config (#46)

https://origami.ft.com/spec/v1/manifest/#origamitype

* try breaking vscode and hopefully fixing github (#37)

* Add tests to confirm our linting extectations.

These tests will be usefull to confirm updating rules will not
effect our linting in unexpected ways and also to help us migrate
from stylelint in the future if we need to (the sasslint migration
was a bit tricky).

These tests were previously part of origami build tools:
- File: https://github.com/Financial-Times/origami-build-tools/blob/a910eaae22e2e0aa47e2c64fe13eaf3d2a7a0c9a/test/unit/tasks/verify-sass.test.js#L87
- PR: https://github.com/Financial-Times/origami-build-tools/pull/727

* Bump execa from 4.1.0 to 5.0.0

Bumps [execa](https://github.com/sindresorhus/execa) from 4.1.0 to 5.0.0.
- [Release notes](https://github.com/sindresorhus/execa/releases)
- [Commits](https://github.com/sindresorhus/execa/compare/v4.1.0...v5.0.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.2 to v2.1.3

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.2 to v2.1.3

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.2 to v2.1.3

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9)

Signed-off-by: dependabot[bot] <support@github.com>

* build(deps): npm audit fix

Summary:
- Updated packages: 1
- Added packages: 0
- Removed packages: 0

Fixed vulnerabilities:
- ini: "Prototype Pollution" (https://npmjs.com/advisories/1589)

* build(deps): npm audit fix

Summary:
- Updated packages: 1
- Added packages: 0
- Removed packages: 0

Fixed vulnerabilities:
- ini: "Prototype Pollution" (https://npmjs.com/advisories/1589)

* Bump actions/setup-node from v2.1.3 to v2.1.4

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.3 to v2.1.4

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.3 to v2.1.4

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e)

Signed-off-by: dependabot[bot] <support@github.com>

* Add publish to npm workflow

The `automatic-tag-and-release` workflow creates a GitHub release
based on which of our Github release labels have been applied to
a merged PR, and comments on the PR to say the release has happened.
However it does not actually do the publishing to npm. That means
the last two releases of `remark-preset-lint-origami-component`
were not published to npm but looked as if they were. Including
this PR to try fixing the README name warning in Github:
https://github.com/Financial-Times/remark-preset-lint-origami-component/pull/37

* Correct package.json version.

This PR is really just to make a new release and hope the Github
workflow `remark-preset-lint-origami-component` runs and updates
this version number again.

* Remove whitespace from action name

* Bump pascalgn/automerge-action from v0.12.0 to v0.13.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.12.0 to v0.13.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.12.0 to v0.13.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e)

Signed-off-by: dependabot[bot] <support@github.com>

* update the test workflow to use branch named `main` (#48)

we changed the default branch of this project but missed this workflow during that work.

* Bump Financial-Times/origami-version from v1 to v1.1.3

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1 to v1.1.3

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1 to v1.1.3

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.1.3 to v1.2.0

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.1.3 to v1.2.0

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.1.3 to v1.2.0

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.8.0 to 13.9.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.8.0 to 13.9.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.8.0...13.9.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Add ability to publish prereleases with a different dist-tag

Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag

* Add ability to publish prereleases with a different dist-tag

Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag

* Bump Financial-Times/origami-version from v1.2.0 to v1.2.1

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.2.0 to v1.2.1

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.2.0 to v1.2.1

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.2.1 to 8.3.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.2.1 to 8.3.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.13.0 to v0.13.1

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.13.0 to v0.13.1

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.13.0 to v0.13.1

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.9.0 to 13.10.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.9.0 to 13.10.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.9.0...13.10.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.10.0 to 13.11.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.10.0 to 13.11.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.10.0...13.11.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.4 to v2.1.5

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.4 to v2.1.5

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.4 to v2.1.5

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea)

Signed-off-by: dependabot[bot] <support@github.com>

* simplify our dependabot auto-merge system

This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality

* simplify our dependabot auto-merge system

This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality

* simplify our dependabot auto-merge system

This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality

* use step level if statements as job level if is not working correctly

* use step level if statements as job level if is not working correctly

* use step level if statements as job level if is not working correctly

* Bump mocha from 8.3.0 to 8.3.1 (#59)

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump mocha from 8.3.0 to 8.3.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.11.0 to 13.12.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.11.0 to 13.12.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.11.0...13.12.0)

Signed-off-by: dependabot[bot] <support@github.com>

* use pull_request_target and not pull_request for the safe workflows

We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons.

For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require.

Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks.

* Bump mocha from 8.3.1 to 8.3.2 (#60)

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* use pull_request_target and not pull_request for the safe workflows

We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons.

For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require.

Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks.

* use pull_request_target and not pull_request for the safe workflows

We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons.

For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require.

Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks.

* use pull_request_target and not pull_request for the safe workflows (#63)

use pull_request_target and not pull_request for the safe workflows

* Bump mocha from 8.3.1 to 8.3.2

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump hmarr/auto-approve-action

Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump hmarr/auto-approve-action (#64)

Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump hmarr/auto-approve-action

Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.12.0 to 13.13.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.12.0 to 13.13.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.12.0...13.13.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.13.0 to 13.13.1

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.13.0 to 13.13.1.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.13.0...13.13.1)

Signed-off-by: dependabot[bot] <support@github.com>

* We don't want to use dependabot to update dependencies anymore (#65)

* We don't want to use dependabot to update dependencies anymore

* We don't want to use dependabot to update dependencies anymore

* Delete npm-audit-fix.yml

* Delete npm-audit-fix.yml

* Bump lodash from 4.17.19 to 4.17.21

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.19...4.17.21)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump hosted-git-info from 2.8.8 to 2.8.9 (#66)

Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.8 to 2.8.9.
- [Release notes](https://github.com/npm/hosted-git-info/releases)
- [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md)
- [Commits](https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* allow single letter mixins

If an origami component has a single letter name, then it's primary mixin would be a single letter
E.G. The component `@financial-times/a` would have a primary mixin named `a`.

I came across this when testing out a new version of `obt init` and I set the component name to `a`.

I'm not sure if we want this functionality, maybe we want to disallow single letter component names instead?

* Add integration test for single letter mixin

* Bump trim-newlines from 3.0.0 to 3.0.1

Bumps [trim-newlines](https://github.com/sindresorhus/trim-newlines) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/sindresorhus/trim-newlines/releases)
- [Commits](https://github.com/sindresorhus/trim-newlines/commits)

---
updated-dependencies:
- dependency-name: trim-newlines
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump glob-parent from 5.1.1 to 5.1.2

Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2.
- [Release notes](https://github.com/gulpjs/glob-parent/releases)
- [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md)
- [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2)

---
updated-dependencies:
- dependency-name: glob-parent
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump glob-parent from 5.1.1 to 5.1.2

Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2.
- [Release notes](https://github.com/gulpjs/glob-parent/releases)
- [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md)
- [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2)

---
updated-dependencies:
- dependency-name: glob-parent
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump postcss from 7.0.31 to 7.0.36

Bumps [postcss](https://github.com/postcss/postcss) from 7.0.31 to 7.0.36.
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](https://github.com/postcss/postcss/compare/7.0.31...7.0.36)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* chore: bring linter presets into the monorepo

* chore: regenerate config

Co-authored-by: Jake Champion <me@jakechampion.name>
Co-authored-by: Jake Champion <jakechampion.jake2@googlemail.com>
Co-authored-by: notlee <lee.moody@ft.com>
Co-authored-by: Lee Moody <notlee@users.noreply.github.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: JakeChampion <actions@github.com>
Co-authored-by: Fox <origamiserviceuser@users.noreply.github.com>
JakeChampion added a commit that referenced this issue Sep 24, 2021
@chee @JakeChampion
@notlee @dependabot-preview @dependabot @actions-user @origamiserviceuser
chore: bring component lint config presets into the repo (#310)
b63f5e5 
* Add origami-version GitHub Action

When this is merged, we can have automated releases by using the release-type labels "major"/"minor"/"patch" on a pull-request before merging the pull-request.

* Update config.js

* Update automatic-tag-and-release.yml

* 2.0.0

* 2.0.1

* Move from CircleCI to GitHub Actions

* Update publish-to-npm.yml

* Update automatic-tag-and-release.yml

* Update config.test.js

* only run on prs

* Initial commit.

Rules taken from [origami-build-tools
v10](https://github.com/Financial-Times/origami-build-tools/blob/a931d2d8c8617a5309484d6624a078016866b3db/config/.stylelintrc.json).

* Plugins are dependencies, not devDependencies.

* Allow function arguments to go on a new line.

This should be valid:
```scss
.argument-newline {
	@include baz(
		'Lorem ipsum dolor sit amet consectetur adipisicing elit.',
		'Lorem ipsum dolor sit amet consectetur adipisicing.'
	);
}
```

* Allow `@include oGridRespondTo` after declarations.

The output of `oGridRespondTo` is a media query.

* Allow newlines in declarations and in and round function arguments.

This is useful for formatting functions with large arguments in a
readable way:
```scss
$some-very-very-very-large-conditional: true;
$foreground-color: if(
	$some-very-very-very-large-conditional == true,
	"then each argument should go on a newline for readability",
	"otherwise each argument could be on the same line"
);
```

And for formatting declarations such as grid areas in a readable
way:
```scss
.foo-grid {
	grid-template-areas:
		"header header header"
		". sidebar ."
		". main ."
		"footer footer footer";
}
```

* Auto merge dependabot dev dependency PRs

https://github.com/Financial-Times/origami/issues/55

* Bump stylelint-scss from 3.17.1 to 3.17.2

Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.1 to 3.17.2.
- [Release notes](https://github.com/kristerkari/stylelint-scss/releases)
- [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md)
- [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.1...3.17.2)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Auto merge dependabot dev dependency PRs

https://github.com/Financial-Times/origami/issues/55

* Bump @financial-times/origami-service-makefile from 6.0.1 to 7.0.3

Bumps [@financial-times/origami-service-makefile](https://github.com/Financial-Times/origami-service-makefile) from 6.0.1 to 7.0.3.
- [Release notes](https://github.com/Financial-Times/origami-service-makefile/releases)
- [Commits](https://github.com/Financial-Times/origami-service-makefile/compare/v6.0.1...v7.0.3)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 7.1.2 to 7.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 7.1.2 to 7.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v7.1.2...v7.2.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 4.0.1 to 7.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 4.0.1 to 7.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v4.0.1...v7.2.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add Github Action to auto approve dependabot

So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55

* Add Github Action to auto approve dependabot

So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55

* Bump proclaim from 3.5.0 to 3.6.0

Bumps [proclaim](https://github.com/rowanmanning/proclaim) from 3.5.0 to 3.6.0.
- [Release notes](https://github.com/rowanmanning/proclaim/releases)
- [Commits](https://github.com/rowanmanning/proclaim/compare/3.5.0...3.6.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add Github Action to apply Origami type label

We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43

* Add Github Action to apply Origami type label

We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43

* initial commit

* Create npm-cit.yml

* add origami .github files

* Update README.md

* Add Github Action to apply Origami type label (#1)

* Add origami.json (#3)

* Bump stylelint-order from 4.0.0 to 4.1.0

Bumps [stylelint-order](https://github.com/hudochenkov/stylelint-order) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/hudochenkov/stylelint-order/releases)
- [Changelog](https://github.com/hudochenkov/stylelint-order/blob/master/CHANGELOG.md)
- [Commits](https://github.com/hudochenkov/stylelint-order/compare/4.0.0...4.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Rename package to remove -readme (#4)

* Improve licence linting (#6)

* Don't try to trim what is not there (#7)

* Improve handling of ToC with heading (#8)

* Bump mocha from 7.2.0 to 8.0.1

Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 7.2.0 to 8.0.1

Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump stylelint-scss from 3.17.2 to 3.18.0

Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.2 to 3.18.0.
- [Release notes](https://github.com/kristerkari/stylelint-scss/releases)
- [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md)
- [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.2...3.18.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* make dependabot ignore snyk updates

snyk does too many updates and it makes for too many pull-requests for origami to review

* only run on merged pull-requests

* add name to labels workflow

* [Security] Bump lodash from 4.17.15 to 4.17.19

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* [Security] Bump lodash from 4.17.15 to 4.17.19

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* update weekly instead of live because live is too noisy

* Expect to be in root when lint is run (#9)

* Bump mocha from 8.0.1 to 8.1.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 8.0.1 to 8.1.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add some keywords to the origami.json

* Bump mocha from 8.1.0 to 8.1.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 8.1.0 to 8.1.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add new rule `readme-has-general-usage`.

Check for the presence of a link to general component usage
documentation "https://origami.ft.com/docs/components".

Relates to: https://github.com/Financial-Times/origami/issues/59

Fixes: https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/13

* Update test/invalid/invalid-missing-general-usage/README.md

Co-authored-by: Jake Champion <me@jakechampion.name>

* Update `rules/readme-has-general-usage.js` indent and quotes

* Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63

* Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63

* Delete automerge.yml

* Bump actions/setup-node from v1 to v2.1.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824)

Signed-off-by: dependabot[bot] <support@github.com>

* add hack for vscode-remark-lint (#16)

* remove stray slash

* rewrite check for bower name existence

* add a hack for remark-lint

* Bump mocha from 8.1.1 to 8.1.2

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e)

Signed-off-by: dependabot[bot] <support@github.com>

* Update dependabot.yml

* Delete config.yml

* Create dependabot.yml

* Create automerge.yml

* add missing workflow files

* Bump actions/setup-node from v1 to v2.1.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.1 to 8.1.2

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2)

Signed-off-by: dependabot[bot] <support@github.com>

* Create dependabot.yml

* Create automerge.yml

* Add auto-approve dependabot workflow

* Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v1 to v2.1.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v1 to v2.1.1

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v1 to v2.1.1.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v1...851e2594e44b5f0a0f44a4b807f10eaba91b31b2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark from 12.0.0 to 12.0.1

Bumps [remark](https://github.com/remarkjs/remark) from 12.0.0 to 12.0.1.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/12.0.0...12.0.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark-cli from 8.0.0 to 8.0.1

Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.0 to 8.0.1.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.0...remark-cli@8.0.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.2 to 8.1.3

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.2 to 8.1.3

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3)

Signed-off-by: dependabot[bot] <support@github.com>

* Add linting rule to ensure relative imports always have a file extension

* Make the import extension rule be a warning to make this a non-breaking change

* Use word instead of number to mark the severity

* use words instead of numbers to mark the severity for rules (#38)

* Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.9.0 to v0.10.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.9.0 to v0.10.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 (#39)

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Update `automatic-tag-and-release`, consistent with components.

I'm wondering if it will somehow help this issue, though
I don't see how it would.
https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/24

Since `fetch-depth: 0` fetches all tags and branches, I wonder
if the step is needed at all
https://github.com/actions/checkout#fetch-all-history-for-all-tags-and-branches

* only run automerge on dependabot prs

* Make automerge only run on dependabot prs and not rebase anything

* Make automerge only run on dependabot prs and not rebase anything

* only run automerge on dependabot prs

* only run automerge on dependabot prs

* only run automerge on dependabot prs

* only run automerge on dependabot prs

* update to latest version of origami workflows

* update to latest version of origami workflows

* update to latest version of origami workflows

* add note about origami-build-tools to the readme (#29)

* Bump pascalgn/automerge-action from v0.10.0 to v0.11.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.10.0 to v0.11.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.10.0 to v0.11.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.1 to v2.1.2

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.1 to v2.1.2

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.1 to v2.1.2

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.11.0 to v0.12.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.11.0 to v0.12.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.11.0 to v0.12.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark-cli from 8.0.1 to 9.0.0

Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.1 to 9.0.0.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.1...remark-cli@9.0.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark from 12.0.1 to 13.0.0

Bumps [remark](https://github.com/remarkjs/remark) from 12.0.1 to 13.0.0.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/12.0.1...13.0.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.3 to 8.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.3 to 8.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf)

Signed-off-by: dependabot[bot] <support@github.com>

* Delete whitesource.config.json

* make the example codeblock use the correct config name

* Bump mocha from 8.2.0 to 8.2.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.2.0 to 8.2.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Set origamiType to config (#46)

https://origami.ft.com/spec/v1/manifest/#origamitype

* try breaking vscode and hopefully fixing github (#37)

* Add tests to confirm our linting extectations.

These tests will be usefull to confirm updating rules will not
effect our linting in unexpected ways and also to help us migrate
from stylelint in the future if we need to (the sasslint migration
was a bit tricky).

These tests were previously part of origami build tools:
- File: https://github.com/Financial-Times/origami-build-tools/blob/a910eaae22e2e0aa47e2c64fe13eaf3d2a7a0c9a/test/unit/tasks/verify-sass.test.js#L87
- PR: https://github.com/Financial-Times/origami-build-tools/pull/727

* Bump execa from 4.1.0 to 5.0.0

Bumps [execa](https://github.com/sindresorhus/execa) from 4.1.0 to 5.0.0.
- [Release notes](https://github.com/sindresorhus/execa/releases)
- [Commits](https://github.com/sindresorhus/execa/compare/v4.1.0...v5.0.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.2 to v2.1.3

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.2 to v2.1.3

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.2 to v2.1.3

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9)

Signed-off-by: dependabot[bot] <support@github.com>

* build(deps): npm audit fix

Summary:
- Updated packages: 1
- Added packages: 0
- Removed packages: 0

Fixed vulnerabilities:
- ini: "Prototype Pollution" (https://npmjs.com/advisories/1589)

* build(deps): npm audit fix

Summary:
- Updated packages: 1
- Added packages: 0
- Removed packages: 0

Fixed vulnerabilities:
- ini: "Prototype Pollution" (https://npmjs.com/advisories/1589)

* Bump actions/setup-node from v2.1.3 to v2.1.4

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.3 to v2.1.4

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.3 to v2.1.4

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e)

Signed-off-by: dependabot[bot] <support@github.com>

* Add publish to npm workflow

The `automatic-tag-and-release` workflow creates a GitHub release
based on which of our Github release labels have been applied to
a merged PR, and comments on the PR to say the release has happened.
However it does not actually do the publishing to npm. That means
the last two releases of `remark-preset-lint-origami-component`
were not published to npm but looked as if they were. Including
this PR to try fixing the README name warning in Github:
https://github.com/Financial-Times/remark-preset-lint-origami-component/pull/37

* Correct package.json version.

This PR is really just to make a new release and hope the Github
workflow `remark-preset-lint-origami-component` runs and updates
this version number again.

* Remove whitespace from action name

* Bump pascalgn/automerge-action from v0.12.0 to v0.13.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.12.0 to v0.13.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.12.0 to v0.13.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e)

Signed-off-by: dependabot[bot] <support@github.com>

* update the test workflow to use branch named `main` (#48)

we changed the default branch of this project but missed this workflow during that work.

* Bump Financial-Times/origami-version from v1 to v1.1.3

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1 to v1.1.3

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1 to v1.1.3

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.1.3 to v1.2.0

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.1.3 to v1.2.0

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.1.3 to v1.2.0

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.8.0 to 13.9.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.8.0 to 13.9.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.8.0...13.9.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Add ability to publish prereleases with a different dist-tag

Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag

* Add ability to publish prereleases with a different dist-tag

Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag

* Bump Financial-Times/origami-version from v1.2.0 to v1.2.1

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.2.0 to v1.2.1

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.2.0 to v1.2.1

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.2.1 to 8.3.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.2.1 to 8.3.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.13.0 to v0.13.1

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.13.0 to v0.13.1

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.13.0 to v0.13.1

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.9.0 to 13.10.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.9.0 to 13.10.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.9.0...13.10.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.10.0 to 13.11.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.10.0 to 13.11.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.10.0...13.11.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.4 to v2.1.5

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.4 to v2.1.5

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.4 to v2.1.5

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea)

Signed-off-by: dependabot[bot] <support@github.com>

* simplify our dependabot auto-merge system

This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality

* simplify our dependabot auto-merge system

This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality

* simplify our dependabot auto-merge system

This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality

* use step level if statements as job level if is not working correctly

* use step level if statements as job level if is not working correctly

* use step level if statements as job level if is not working correctly

* Bump mocha from 8.3.0 to 8.3.1 (#59)

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump mocha from 8.3.0 to 8.3.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.11.0 to 13.12.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.11.0 to 13.12.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.11.0...13.12.0)

Signed-off-by: dependabot[bot] <support@github.com>

* use pull_request_target and not pull_request for the safe workflows

We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons.

For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require.

Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks.

* Bump mocha from 8.3.1 to 8.3.2 (#60)

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* use pull_request_target and not pull_request for the safe workflows

We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons.

For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require.

Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks.

* use pull_request_target and not pull_request for the safe workflows

We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons.

For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require.

Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks.

* use pull_request_target and not pull_request for the safe workflows (#63)

use pull_request_target and not pull_request for the safe workflows

* Bump mocha from 8.3.1 to 8.3.2

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump hmarr/auto-approve-action

Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump hmarr/auto-approve-action (#64)

Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump hmarr/auto-approve-action

Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.12.0 to 13.13.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.12.0 to 13.13.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.12.0...13.13.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.13.0 to 13.13.1

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.13.0 to 13.13.1.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.13.0...13.13.1)

Signed-off-by: dependabot[bot] <support@github.com>

* We don't want to use dependabot to update dependencies anymore (#65)

* We don't want to use dependabot to update dependencies anymore

* We don't want to use dependabot to update dependencies anymore

* Delete npm-audit-fix.yml

* Delete npm-audit-fix.yml

* Bump lodash from 4.17.19 to 4.17.21

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.19...4.17.21)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump hosted-git-info from 2.8.8 to 2.8.9 (#66)

Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.8 to 2.8.9.
- [Release notes](https://github.com/npm/hosted-git-info/releases)
- [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md)
- [Commits](https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* allow single letter mixins

If an origami component has a single letter name, then it's primary mixin would be a single letter
E.G. The component `@financial-times/a` would have a primary mixin named `a`.

I came across this when testing out a new version of `obt init` and I set the component name to `a`.

I'm not sure if we want this functionality, maybe we want to disallow single letter component names instead?

* Add integration test for single letter mixin

* Bump trim-newlines from 3.0.0 to 3.0.1

Bumps [trim-newlines](https://github.com/sindresorhus/trim-newlines) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/sindresorhus/trim-newlines/releases)
- [Commits](https://github.com/sindresorhus/trim-newlines/commits)

---
updated-dependencies:
- dependency-name: trim-newlines
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump glob-parent from 5.1.1 to 5.1.2

Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2.
- [Release notes](https://github.com/gulpjs/glob-parent/releases)
- [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md)
- [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2)

---
updated-dependencies:
- dependency-name: glob-parent
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump glob-parent from 5.1.1 to 5.1.2

Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2.
- [Release notes](https://github.com/gulpjs/glob-parent/releases)
- [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md)
- [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2)

---
updated-dependencies:
- dependency-name: glob-parent
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump postcss from 7.0.31 to 7.0.36

Bumps [postcss](https://github.com/postcss/postcss) from 7.0.31 to 7.0.36.
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](https://github.com/postcss/postcss/compare/7.0.31...7.0.36)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* chore: bring linter presets into the monorepo

* chore: regenerate config

Co-authored-by: Jake Champion <me@jakechampion.name>
Co-authored-by: Jake Champion <jakechampion.jake2@googlemail.com>
Co-authored-by: notlee <lee.moody@ft.com>
Co-authored-by: Lee Moody <notlee@users.noreply.github.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: JakeChampion <actions@github.com>
Co-authored-by: Fox <origamiserviceuser@users.noreply.github.com>
JakeChampion added a commit that referenced this issue Sep 24, 2021
@chee @JakeChampion
@notlee @dependabot-preview @dependabot @actions-user @origamiserviceuser
chore: bring component lint config presets into the repo (#310)
b17d25a 
* Add origami-version GitHub Action

When this is merged, we can have automated releases by using the release-type labels "major"/"minor"/"patch" on a pull-request before merging the pull-request.

* Update config.js

* Update automatic-tag-and-release.yml

* 2.0.0

* 2.0.1

* Move from CircleCI to GitHub Actions

* Update publish-to-npm.yml

* Update automatic-tag-and-release.yml

* Update config.test.js

* only run on prs

* Initial commit.

Rules taken from [origami-build-tools
v10](https://github.com/Financial-Times/origami-build-tools/blob/a931d2d8c8617a5309484d6624a078016866b3db/config/.stylelintrc.json).

* Plugins are dependencies, not devDependencies.

* Allow function arguments to go on a new line.

This should be valid:
```scss
.argument-newline {
	@include baz(
		'Lorem ipsum dolor sit amet consectetur adipisicing elit.',
		'Lorem ipsum dolor sit amet consectetur adipisicing.'
	);
}
```

* Allow `@include oGridRespondTo` after declarations.

The output of `oGridRespondTo` is a media query.

* Allow newlines in declarations and in and round function arguments.

This is useful for formatting functions with large arguments in a
readable way:
```scss
$some-very-very-very-large-conditional: true;
$foreground-color: if(
	$some-very-very-very-large-conditional == true,
	"then each argument should go on a newline for readability",
	"otherwise each argument could be on the same line"
);
```

And for formatting declarations such as grid areas in a readable
way:
```scss
.foo-grid {
	grid-template-areas:
		"header header header"
		". sidebar ."
		". main ."
		"footer footer footer";
}
```

* Auto merge dependabot dev dependency PRs

https://github.com/Financial-Times/origami/issues/55

* Bump stylelint-scss from 3.17.1 to 3.17.2

Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.1 to 3.17.2.
- [Release notes](https://github.com/kristerkari/stylelint-scss/releases)
- [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md)
- [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.1...3.17.2)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Auto merge dependabot dev dependency PRs

https://github.com/Financial-Times/origami/issues/55

* Bump @financial-times/origami-service-makefile from 6.0.1 to 7.0.3

Bumps [@financial-times/origami-service-makefile](https://github.com/Financial-Times/origami-service-makefile) from 6.0.1 to 7.0.3.
- [Release notes](https://github.com/Financial-Times/origami-service-makefile/releases)
- [Commits](https://github.com/Financial-Times/origami-service-makefile/compare/v6.0.1...v7.0.3)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 7.1.2 to 7.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 7.1.2 to 7.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v7.1.2...v7.2.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 4.0.1 to 7.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 4.0.1 to 7.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v4.0.1...v7.2.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add Github Action to auto approve dependabot

So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55

* Add Github Action to auto approve dependabot

So it may auto-merge dev dependencies: https://github.com/Financial-Times/origami/issues/55

* Bump proclaim from 3.5.0 to 3.6.0

Bumps [proclaim](https://github.com/rowanmanning/proclaim) from 3.5.0 to 3.6.0.
- [Release notes](https://github.com/rowanmanning/proclaim/releases)
- [Commits](https://github.com/rowanmanning/proclaim/compare/3.5.0...3.6.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add Github Action to apply Origami type label

We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43

* Add Github Action to apply Origami type label

We we can track issues on our project board: https://github.com/Financial-Times/origami/issues/43

* initial commit

* Create npm-cit.yml

* add origami .github files

* Update README.md

* Add Github Action to apply Origami type label (#1)

* Add origami.json (#3)

* Bump stylelint-order from 4.0.0 to 4.1.0

Bumps [stylelint-order](https://github.com/hudochenkov/stylelint-order) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/hudochenkov/stylelint-order/releases)
- [Changelog](https://github.com/hudochenkov/stylelint-order/blob/master/CHANGELOG.md)
- [Commits](https://github.com/hudochenkov/stylelint-order/compare/4.0.0...4.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Rename package to remove -readme (#4)

* Improve licence linting (#6)

* Don't try to trim what is not there (#7)

* Improve handling of ToC with heading (#8)

* Bump mocha from 7.2.0 to 8.0.1

Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 7.2.0 to 8.0.1

Bumps [mocha](https://github.com/mochajs/mocha) from 7.2.0 to 8.0.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v7.2.0...v8.0.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump stylelint-scss from 3.17.2 to 3.18.0

Bumps [stylelint-scss](https://github.com/kristerkari/stylelint-scss) from 3.17.2 to 3.18.0.
- [Release notes](https://github.com/kristerkari/stylelint-scss/releases)
- [Changelog](https://github.com/kristerkari/stylelint-scss/blob/master/CHANGELOG.md)
- [Commits](https://github.com/kristerkari/stylelint-scss/compare/3.17.2...3.18.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* make dependabot ignore snyk updates

snyk does too many updates and it makes for too many pull-requests for origami to review

* only run on merged pull-requests

* add name to labels workflow

* [Security] Bump lodash from 4.17.15 to 4.17.19

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* [Security] Bump lodash from 4.17.15 to 4.17.19

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* update weekly instead of live because live is too noisy

* Expect to be in root when lint is run (#9)

* Bump mocha from 8.0.1 to 8.1.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 8.0.1 to 8.1.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.0.1 to 8.1.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.0.1...v8.1.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add some keywords to the origami.json

* Bump mocha from 8.1.0 to 8.1.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Bump mocha from 8.1.0 to 8.1.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.0 to 8.1.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.0...v8.1.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

* Add new rule `readme-has-general-usage`.

Check for the presence of a link to general component usage
documentation "https://origami.ft.com/docs/components".

Relates to: https://github.com/Financial-Times/origami/issues/59

Fixes: https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/13

* Update test/invalid/invalid-missing-general-usage/README.md

Co-authored-by: Jake Champion <me@jakechampion.name>

* Update `rules/readme-has-general-usage.js` indent and quotes

* Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63

* Move to Github's native Dependabot -- https://github.com/Financial-Times/origami/pull/63

* Delete automerge.yml

* Bump actions/setup-node from v1 to v2.1.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824)

Signed-off-by: dependabot[bot] <support@github.com>

* add hack for vscode-remark-lint (#16)

* remove stray slash

* rewrite check for bower name existence

* add a hack for remark-lint

* Bump mocha from 8.1.1 to 8.1.2

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e)

Signed-off-by: dependabot[bot] <support@github.com>

* Update dependabot.yml

* Delete config.yml

* Create dependabot.yml

* Create automerge.yml

* add missing workflow files

* Bump actions/setup-node from v1 to v2.1.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.1 to 8.1.2

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.1 to 8.1.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.1...v8.1.2)

Signed-off-by: dependabot[bot] <support@github.com>

* Create dependabot.yml

* Create automerge.yml

* Add auto-approve dependabot workflow

* Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v1 to v2.1.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v1 to v2.1.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...321b6ccb03083caa2ad22b27dc4b45335212e824)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v1 to v2.1.1

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v1 to v2.1.1.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v1...851e2594e44b5f0a0f44a4b807f10eaba91b31b2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark from 12.0.0 to 12.0.1

Bumps [remark](https://github.com/remarkjs/remark) from 12.0.0 to 12.0.1.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/12.0.0...12.0.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1 to v1.1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1 to v1.1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1...d41eb0a4af90133d7c9073a1e2edb81f12143e6e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark-cli from 8.0.0 to 8.0.1

Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.0 to 8.0.1.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.0...remark-cli@8.0.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.2 to 8.1.3

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.1.2 to v1.2

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.1.2 to v1.2.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.1.2...9479074295c2894683206a19290156948fd332df)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.2 to 8.1.3

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.2 to 8.1.3.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.2...v8.1.3)

Signed-off-by: dependabot[bot] <support@github.com>

* Add linting rule to ensure relative imports always have a file extension

* Make the import extension rule be a warning to make this a non-breaking change

* Use word instead of number to mark the severity

* use words instead of numbers to mark the severity for rules (#38)

* Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.1 to v2.1.2

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.1...4f8ffe6912f724ac19d34024f29fa500c8d59b7e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.2 to v2.1.3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.2...ed4494588667f1499ce7b892a0e26b066e954c3a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.9.0 to v0.10.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.9.0 to v0.10.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.9.0 to v0.10.0 (#39)

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.9.0 to v0.10.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.9.0...a6eda95628e71aa97719c9e111847402fa9d476a)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Update `automatic-tag-and-release`, consistent with components.

I'm wondering if it will somehow help this issue, though
I don't see how it would.
https://github.com/Financial-Times/remark-preset-lint-origami-component/issues/24

Since `fetch-depth: 0` fetches all tags and branches, I wonder
if the step is needed at all
https://github.com/actions/checkout#fetch-all-history-for-all-tags-and-branches

* only run automerge on dependabot prs

* Make automerge only run on dependabot prs and not rebase anything

* Make automerge only run on dependabot prs and not rebase anything

* only run automerge on dependabot prs

* only run automerge on dependabot prs

* only run automerge on dependabot prs

* only run automerge on dependabot prs

* update to latest version of origami workflows

* update to latest version of origami workflows

* update to latest version of origami workflows

* add note about origami-build-tools to the readme (#29)

* Bump pascalgn/automerge-action from v0.10.0 to v0.11.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.10.0 to v0.11.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.10.0 to v0.11.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.10.0 to v0.11.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.10.0...eb9575adbe8c16386ad6a33ffc74812bfd530f90)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.3 to v2.1.4

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.3...898c828529dbd89580c1e266cf0d93d4e5bd45f5)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.1 to v2.1.2

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.1 to v2.1.2

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.1 to v2.1.2

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.1 to v2.1.2.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.1...c6fd00ceb9747fb23ffdf72987450a2664414867)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.11.0 to v0.12.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.11.0 to v0.12.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.11.0 to v0.12.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.11.0 to v0.12.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.11.0...c9bd1823770819dc8fb8a5db2d11a3a95fbe9b07)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark-cli from 8.0.1 to 9.0.0

Bumps [remark-cli](https://github.com/remarkjs/remark) from 8.0.1 to 9.0.0.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/remark-cli@8.0.1...remark-cli@9.0.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump remark from 12.0.1 to 13.0.0

Bumps [remark](https://github.com/remarkjs/remark) from 12.0.1 to 13.0.0.
- [Release notes](https://github.com/remarkjs/remark/releases)
- [Changelog](https://github.com/remarkjs/remark/blob/main/changelog.md)
- [Commits](https://github.com/remarkjs/remark/compare/12.0.1...13.0.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.3 to 8.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.1.3 to 8.2.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.1.3 to 8.2.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.1.3...v8.2.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.4 to v2.1.5

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.4...635bb051b1341ee3824c80c484e6efa9779b9cbf)

Signed-off-by: dependabot[bot] <support@github.com>

* Delete whitesource.config.json

* make the example codeblock use the correct config name

* Bump mocha from 8.2.0 to 8.2.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.2.0 to 8.2.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.0 to 8.2.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.0...v8.2.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Set origamiType to config (#46)

https://origami.ft.com/spec/v1/manifest/#origamitype

* try breaking vscode and hopefully fixing github (#37)

* Add tests to confirm our linting extectations.

These tests will be usefull to confirm updating rules will not
effect our linting in unexpected ways and also to help us migrate
from stylelint in the future if we need to (the sasslint migration
was a bit tricky).

These tests were previously part of origami build tools:
- File: https://github.com/Financial-Times/origami-build-tools/blob/a910eaae22e2e0aa47e2c64fe13eaf3d2a7a0c9a/test/unit/tasks/verify-sass.test.js#L87
- PR: https://github.com/Financial-Times/origami-build-tools/pull/727

* Bump execa from 4.1.0 to 5.0.0

Bumps [execa](https://github.com/sindresorhus/execa) from 4.1.0 to 5.0.0.
- [Release notes](https://github.com/sindresorhus/execa/releases)
- [Commits](https://github.com/sindresorhus/execa/compare/v4.1.0...v5.0.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.2 to v2.1.3

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.2 to v2.1.3

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.2 to v2.1.3

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.2 to v2.1.3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.2...27082cecf3ff7a1742dbd5e12605f0cb59dce2d9)

Signed-off-by: dependabot[bot] <support@github.com>

* build(deps): npm audit fix

Summary:
- Updated packages: 1
- Added packages: 0
- Removed packages: 0

Fixed vulnerabilities:
- ini: "Prototype Pollution" (https://npmjs.com/advisories/1589)

* build(deps): npm audit fix

Summary:
- Updated packages: 1
- Added packages: 0
- Removed packages: 0

Fixed vulnerabilities:
- ini: "Prototype Pollution" (https://npmjs.com/advisories/1589)

* Bump actions/setup-node from v2.1.3 to v2.1.4

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.3 to v2.1.4

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.3 to v2.1.4

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.3 to v2.1.4.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.3...c46424eee26de4078d34105d3de3cc4992202b1e)

Signed-off-by: dependabot[bot] <support@github.com>

* Add publish to npm workflow

The `automatic-tag-and-release` workflow creates a GitHub release
based on which of our Github release labels have been applied to
a merged PR, and comments on the PR to say the release has happened.
However it does not actually do the publishing to npm. That means
the last two releases of `remark-preset-lint-origami-component`
were not published to npm but looked as if they were. Including
this PR to try fixing the README name warning in Github:
https://github.com/Financial-Times/remark-preset-lint-origami-component/pull/37

* Correct package.json version.

This PR is really just to make a new release and hope the Github
workflow `remark-preset-lint-origami-component` runs and updates
this version number again.

* Remove whitespace from action name

* Bump pascalgn/automerge-action from v0.12.0 to v0.13.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.12.0 to v0.13.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.12.0 to v0.13.0

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.12.0 to v0.13.0.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.12.0...c6f2699cc4c19ea7ce7f560dbebd85565b744377)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump WyriHaximus/github-action-wait-for-status from v1.2 to v1.3

Bumps [WyriHaximus/github-action-wait-for-status](https://github.com/WyriHaximus/github-action-wait-for-status) from v1.2 to v1.3.
- [Release notes](https://github.com/WyriHaximus/github-action-wait-for-status/releases)
- [Commits](https://github.com/WyriHaximus/github-action-wait-for-status/compare/v1.2...c3091ad3007b360d96e503cbc2079ad79215e67e)

Signed-off-by: dependabot[bot] <support@github.com>

* update the test workflow to use branch named `main` (#48)

we changed the default branch of this project but missed this workflow during that work.

* Bump Financial-Times/origami-version from v1 to v1.1.3

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.5 to v2.1.6

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.5 to v2.1.6.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.5...eb18f36935a3a3c0b0c2471400ca3c14fbfab932)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1 to v1.1.3

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1 to v1.1.3

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1 to v1.1.3.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1...8498b0618074fe75ebacc3acfcbfd9bd01da4888)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.1.3 to v1.2.0

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.1.3 to v1.2.0

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.1.3 to v1.2.0

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.1.3 to v1.2.0.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.1.3...95b3808c511666a35cdaff09ef333bf2213ecb5a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.8.0 to 13.9.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.8.0 to 13.9.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.8.0...13.9.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Add ability to publish prereleases with a different dist-tag

Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag

* Add ability to publish prereleases with a different dist-tag

Prior to this change, every release would be given the dist-tag `latest`, which is not what we want. We only want stable releases to be given the `latest` dist-tag

* Bump Financial-Times/origami-version from v1.2.0 to v1.2.1

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.2.0 to v1.2.1

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump Financial-Times/origami-version from v1.2.0 to v1.2.1

Bumps [Financial-Times/origami-version](https://github.com/Financial-Times/origami-version) from v1.2.0 to v1.2.1.
- [Release notes](https://github.com/Financial-Times/origami-version/releases)
- [Commits](https://github.com/Financial-Times/origami-version/compare/v1.2.0...131ad2fc32b693dd181cd6afc80f909cc7c4a730)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.2.1 to 8.3.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mocha from 8.2.1 to 8.3.0

Bumps [mocha](https://github.com/mochajs/mocha) from 8.2.1 to 8.3.0.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.2.1...v8.3.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.13.0 to v0.13.1

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.13.0 to v0.13.1

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump pascalgn/automerge-action from v0.13.0 to v0.13.1

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from v0.13.0 to v0.13.1.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.13.0...741c311a47881be9625932b0a0de1b0937aab1ae)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.9.0 to 13.10.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.9.0 to 13.10.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.9.0...13.10.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.10.0 to 13.11.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.10.0 to 13.11.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.10.0...13.11.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.4 to v2.1.5

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.4 to v2.1.5

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump actions/setup-node from v2.1.4 to v2.1.5

Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.1.4...46071b5c7a2e0c34e49c3cb8a0e792e86e18d5ea)

Signed-off-by: dependabot[bot] <support@github.com>

* simplify our dependabot auto-merge system

This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality

* simplify our dependabot auto-merge system

This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality

* simplify our dependabot auto-merge system

This replaces the complex custom logic in the automerge.yml workflow with GitHubs native automerge functionality

* use step level if statements as job level if is not working correctly

* use step level if statements as job level if is not working correctly

* use step level if statements as job level if is not working correctly

* Bump mocha from 8.3.0 to 8.3.1 (#59)

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump mocha from 8.3.0 to 8.3.1

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.0 to 8.3.1.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.0...v8.3.1)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.11.0 to 13.12.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.11.0 to 13.12.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.11.0...13.12.0)

Signed-off-by: dependabot[bot] <support@github.com>

* use pull_request_target and not pull_request for the safe workflows

We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons.

For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require.

Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks.

* Bump mocha from 8.3.1 to 8.3.2 (#60)

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* use pull_request_target and not pull_request for the safe workflows

We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons.

For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require.

Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks.

* use pull_request_target and not pull_request for the safe workflows

We have workflows that currently fail to run correctly for pull-requests from forks or pull-requests from dependabot. The reason is because those workflows are being triggered by the 'pull_request' event, which does will use a restricted github api token for pull-requests from forks or dependabot for security reasons.

For our workflows which are 'safe' (meaning they do not checkout the code or execute the code in the repository), we can change their trigger from 'pull_request' to 'pull_request_target', which uses a github api token with more permissions, specifically it has permission to read/use secrets, which are the things are workflows require.

Our workflows are safe, they do not checkout or execute the code from the repository, so we should change to using `pull_request_target` to make our workflows work for dependabot and pull-requests from forks.

* use pull_request_target and not pull_request for the safe workflows (#63)

use pull_request_target and not pull_request for the safe workflows

* Bump mocha from 8.3.1 to 8.3.2

Bumps [mocha](https://github.com/mochajs/mocha) from 8.3.1 to 8.3.2.
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mochajs/mocha/compare/v8.3.1...v8.3.2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump hmarr/auto-approve-action

Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump hmarr/auto-approve-action (#64)

Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump hmarr/auto-approve-action

Bumps [hmarr/auto-approve-action](https://github.com/hmarr/auto-approve-action) from bca9db08da72b576ae3273e776e7ccf3f0a36e12 to 2.1.0. This release includes the previously tagged commit.
- [Release notes](https://github.com/hmarr/auto-approve-action/releases)
- [Commits](https://github.com/hmarr/auto-approve-action/compare/bca9db08da72b576ae3273e776e7ccf3f0a36e12...5d04a5ca6da9aeb8ca9f31a5239b96fc3e003029)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.6 to v2.1.7

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.6 to v2.1.7.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.6...a752369a22d723897185d01d3c77220311eebee2)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump ybiquitous/npm-audit-fix-action from v2.1.7 to v3

Bumps [ybiquitous/npm-audit-fix-action](https://github.com/ybiquitous/npm-audit-fix-action) from v2.1.7 to v3.
- [Release notes](https://github.com/ybiquitous/npm-audit-fix-action/releases)
- [Changelog](https://github.com/ybiquitous/npm-audit-fix-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ybiquitous/npm-audit-fix-action/compare/v2.1.7...4e31973f938d06c5f1bbb2c2dbe0dcd66977418a)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.12.0 to 13.13.0

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.12.0 to 13.13.0.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.12.0...13.13.0)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump stylelint from 13.13.0 to 13.13.1

Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.13.0 to 13.13.1.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint/stylelint/compare/13.13.0...13.13.1)

Signed-off-by: dependabot[bot] <support@github.com>

* We don't want to use dependabot to update dependencies anymore (#65)

* We don't want to use dependabot to update dependencies anymore

* We don't want to use dependabot to update dependencies anymore

* Delete npm-audit-fix.yml

* Delete npm-audit-fix.yml

* Bump lodash from 4.17.19 to 4.17.21

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.19...4.17.21)

Signed-off-by: dependabot[bot] <support@github.com>

* Bump hosted-git-info from 2.8.8 to 2.8.9 (#66)

Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.8 to 2.8.9.
- [Release notes](https://github.com/npm/hosted-git-info/releases)
- [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md)
- [Commits](https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* allow single letter mixins

If an origami component has a single letter name, then it's primary mixin would be a single letter
E.G. The component `@financial-times/a` would have a primary mixin named `a`.

I came across this when testing out a new version of `obt init` and I set the component name to `a`.

I'm not sure if we want this functionality, maybe we want to disallow single letter component names instead?

* Add integration test for single letter mixin

* Bump trim-newlines from 3.0.0 to 3.0.1

Bumps [trim-newlines](https://github.com/sindresorhus/trim-newlines) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/sindresorhus/trim-newlines/releases)
- [Commits](https://github.com/sindresorhus/trim-newlines/commits)

---
updated-dependencies:
- dependency-name: trim-newlines
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump glob-parent from 5.1.1 to 5.1.2

Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2.
- [Release notes](https://github.com/gulpjs/glob-parent/releases)
- [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md)
- [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2)

---
updated-dependencies:
- dependency-name: glob-parent
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump glob-parent from 5.1.1 to 5.1.2

Bumps [glob-parent](https://github.com/gulpjs/glob-parent) from 5.1.1 to 5.1.2.
- [Release notes](https://github.com/gulpjs/glob-parent/releases)
- [Changelog](https://github.com/gulpjs/glob-parent/blob/main/CHANGELOG.md)
- [Commits](https://github.com/gulpjs/glob-parent/compare/v5.1.1...v5.1.2)

---
updated-dependencies:
- dependency-name: glob-parent
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump postcss from 7.0.31 to 7.0.36

Bumps [postcss](https://github.com/postcss/postcss) from 7.0.31 to 7.0.36.
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](https://github.com/postcss/postcss/compare/7.0.31...7.0.36)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* chore: bring linter presets into the monorepo

* chore: regenerate config

Co-authored-by: Jake Champion <me@jakechampion.name>
Co-authored-by: Jake Champion <jakechampion.jake2@googlemail.com>
Co-authored-by: notlee <lee.moody@ft.com>
Co-authored-by: Lee Moody <notlee@users.noreply.github.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: JakeChampion <actions@github.com>
Co-authored-by: Fox <origamiserviceuser@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
8 participants
@rowanmanning @chee @rowanbeentje @i-like-robots @JakeChampion @dan-searle @notlee @gvonkoss