Merge pull request #221 from VictorAvelar/housekeeping/02-2023

Housekeeping: 02.2023

.devcontainer/devcontainer.json

@@ -6,6 +6,9 @@
       "GO_VERSION": "1-bullseye"
     }
   },
+  "mounts": [
+    "source=${localEnv:HOME}/.zshrc,target=/root/.zshrc,type=bind,consistency=cached"
+  ],
   "runArgs": [
     "--cap-add=SYS_PTRACE",
     "--security-opt",
@@ -52,16 +55,10 @@
           "ui.semanticTokens": true
         },
         "go.lintTool": "golangci-lint",
-        "go.lintFlags": [
-          "--fast"
-        ],
         "go.lintOnSave": "package",
         "go.toolsEnvVars": {
           "CGO_ENABLED": 1
         },
-        "go.testEnvVars": {
-          "": ""
-        },
         "go.testFlags": [
           "-v",
           "-race"
@@ -88,9 +85,5 @@
     "modules": "go mod download"
   },
   "remoteUser": "root",
-  "containerUser": "root",
-  "containerEnv": {
-    "MOLLIE_API_TOKEN": "${localEnv:MOLLIE_API_TOKEN}",
-    "MOLLIE_ORG_TOKEN": "${localEnv:MOLLIE_ORG_TOKEN}"
-  }
+  "containerUser": "root"
 }

.github/ISSUE_TEMPLATE/bug_report.md

@@ -2,8 +2,8 @@
 name: Bug report
 about: Create a report to help us improve
 title: ''
-labels: ''
-assignees: ''
+labels: ['bug', 'help-wanted']
+assignees: 'VictorAvelar'
 
 ---
 

.github/ISSUE_TEMPLATE/config.yml

@@ -3,3 +3,9 @@ contact_links:
   - name: Victor H. Avelar
     url: https://victoravelar.com
     about: Maintainer
+  - name: Mollie's API Documentation
+    url: https://docs.mollie.com/index
+    about: Official API Documentation
+  - name: Mollie's Changelog
+    url: https://docs.mollie.com/changelog/v2/changelog
+    about: Changes announced in the API

.github/ISSUE_TEMPLATE/feature_request.md

@@ -2,7 +2,7 @@
 name: Feature request
 about: Suggest an idea for this project
 title: ''
-labels: ''
+labels: ['enhancement']
 assignees: ''
 
 ---

.github/dependabot.yml

@@ -6,15 +6,21 @@ updates:
     interval: weekly
     time: "04:00"
   open-pull-requests-limit: 10
+  reviewers:
+   - VictorAvelar
 
 - package-ecosystem: github-actions
   directory: '/'
   schedule:
     interval: daily
   target-branch: master
+  reviewers:
+   - VictorAvelar
 
 - package-ecosystem: docker
   directory: '/'
   schedule:
     interval: weekly
   target-branch: master
+  reviewers:
+   - VictorAvelar

.github/workflows/codeql-analysis.yml

@@ -63,7 +63,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v3
+        uses: actions/checkout@actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL

.github/workflows/golangci-lint.yml

@@ -32,13 +32,15 @@ jobs:
   golangci:
     name: Linter
     runs-on: ubuntu-latest
+    permissions:
+      content: read
+      pull-requests: read
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@39d8d7e78f59cf6b40ac3b9fbebef0c753d7c9e5
         name: golangci-lint
-      - uses: actions/setup-go@v3
+      - uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568
         with:
-          go-version: 1.19.X
-      - uses: golangci/golangci-lint-action@v3.4.0
+          go-version: 1.20.X
+      - uses: golangci/golangci-lint-action@08e2f20817b15149a52b5b3ebe7de50aff2ba8c5
         with:
           version: latest
-          args: --issues-exit-code=0 --new=true --sort-results --skip-dirs-use-default --tests=false

.github/workflows/labeler.yml

@@ -17,7 +17,7 @@ jobs:
       pull-requests: write
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/labeler@v4
+      - uses: actions/labeler@5c7539237e04b714afd8ad9b4aed733815b9fab4
         with:
           repo-token: "${{ secrets.GITHUB_TOKEN }}"
-          sync-labels: true
+          sync-labels: true

.github/workflows/main.yml

@@ -29,13 +29,15 @@ on:
 jobs:
   testing:
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
     strategy:
       matrix:
-        go: [1.17.x, 1.18.x, 1.19.X]
+        go: [1.17.x, 1.18.x, 1.19.X, 1.20.x]
     name: Go ${{ matrix.go }} check
     steps:
-      - uses: actions/checkout@v3
-      - uses: actions/setup-go@v3
+      - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c
+      - uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568
         with:
           go-version: ${{ matrix.go }}
       - run: go test -v -failfast ./...

.github/workflows/release.yml

@@ -9,16 +9,13 @@ jobs:
   goreleaser:
     runs-on: ubuntu-latest
     steps:
-      - name: Checkout
-        uses: actions/checkout@v3
+      - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c
         with:
           fetch-depth: 0
-      - name: Set up Go
-        uses: actions/setup-go@v3
+      - uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568
         with:
-          go-version: 1.19.x
-      - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@v4
+          go-version: 1.20.x
+      - uses: goreleaser/goreleaser-action@f82d6c1c344bcacabba2c841718984797f664a6b
         with:
           version: latest
           args: release --rm-dist

.golangci.yaml

@@ -0,0 +1,32 @@
+# golangci-lint configuration
+
+run:
+  concurrency: 4
+  timeout: 20s
+  issues-exit-code: 2
+  tests: false
+  skip-dirs-use-default: true
+  modules-download-mode: readonly
+  go: '1.17'
+
+output:
+  format: tab
+  sort-results: true
+
+linters:
+  disable:
+    - tagliatelle
+  presets:
+    - bugs
+    - comment
+    - complexity
+    - error
+    - format
+    - import
+    - metalinter
+    - module
+    - performance
+    - sql
+    - style
+
+  fast: true

README.md

@@ -16,6 +16,7 @@
 
 [![Go Reference](https://pkg.go.dev/badge/github.com/VictorAvelar/mollie-api-go/v3/mollie.svg)](https://pkg.go.dev/github.com/VictorAvelar/mollie-api-go/v3/mollie)
 [![Go Report Card](https://goreportcard.com/badge/github.com/VictorAvelar/mollie-api-go/v3)](https://goreportcard.com/report/github.com/VictorAvelar/mollie-api-go/v3)
+[![OpenSSF Best Practices](https://bestpractices.coreinfrastructure.org/projects/3522/badge)](https://bestpractices.coreinfrastructure.org/projects/3522)
 
 Accepting [iDEAL](https://www.mollie.com/payments/ideal/), [Apple Pay](https://www.mollie.com/payments/apple-pay), [Bancontact](https://www.mollie.com/payments/bancontact/), [SOFORT Banking](https://www.mollie.com/payments/sofort/), [Creditcard](https://www.mollie.com/payments/credit-card/), [SEPA Bank transfer](https://www.mollie.com/payments/bank-transfer/), [SEPA Direct debit](https://www.mollie.com/payments/direct-debit/), [PayPal](https://www.mollie.com/payments/paypal/), [Belfius Direct Net](https://www.mollie.com/payments/belfius/), [KBC/CBC](https://www.mollie.com/payments/kbc-cbc/), [paysafecard](https://www.mollie.com/payments/paysafecard/), [Giftcards](https://www.mollie.com/payments/gift-cards/), [Giropay](https://www.mollie.com/payments/giropay/), [EPS](https://www.mollie.com/payments/eps/) and [Przelewy24](https://www.mollie.com/payments/przelewy24/) online payments without fixed monthly costs or any punishing registration procedures. Just use the Mollie API to receive payments directly on your website or easily refund transactions to your customers.
 

SECURITY.md

@@ -14,6 +14,7 @@ declared inside the `.github/workflows/main.yml` file.
 | 1.17.x  | :white_check_mark: |
 | 1.18.x  | :white_check_mark: |
 | 1.19.x  | :white_check_mark: |
+| 1.20.x  | :white_check_mark: |
 | master  | :x:                |
 
 ## Reporting a Vulnerability