From b085537917a62ae2a27ace72348e8cae7886e2ce Mon Sep 17 00:00:00 2001
From: Dave Moten <davidmoten@gmail.com>
Date: Tue, 7 May 2024 09:18:58 +1000
Subject: [PATCH] Update ci.yml

---
 .github/workflows/ci.yml | 49 ++--------------------------------------
 1 file changed, 2 insertions(+), 47 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index e9d2df7..b30b550 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -1,52 +1,7 @@
-name: ci 
-
-## Does continuous integration build with Java 8 and 11 and 
-## if succeeds and due to a dependabot pull request (minor or
-## patch verson change) it will automatically merge the PR. 
-
-## Unlike many sample automerge workflows this does not rely 
-## on third-party libraries apart from the official dependabot
-## repository ones. This reduces the security risk significantly
-## (we don't want to unknowingly merge malicious code or expose 
-## secrets to a malicious third party).
+name: ci
 
 on: [push, pull_request]
 
 jobs:
   build:
-    runs-on: ubuntu-latest
-    strategy: 
-     matrix:
-      java: ['8', '11', '17'] 
-    steps:
-      - uses: actions/checkout@v2
-      - name: Set up JDK ${{ matrix.java }} 
-        uses: actions/setup-java@v2
-        with:
-          java-version: ${{ matrix.java }} 
-          distribution: 'adopt'
-      - name: Build with Maven
-        run: mvn --batch-mode --update-snapshots verify
-      - uses: codecov/codecov-action@v1
-        with:
-          file: ./**/target/site/jacoco/jacoco.xml
-          name: codecov
-  dependabot:
-    runs-on: ubuntu-latest
-    needs: build
-    permissions:
-      pull-requests: write
-      contents: write
-    if: ${{ github.actor == 'dependabot[bot]' && github.event_name == 'pull_request' }}
-    steps:
-      - name: Dependabot metadata
-        id: metadata
-        uses: dependabot/fetch-metadata@v1.1.1
-        with:
-          github-token: "${{ secrets.GITHUB_TOKEN }}"
-      - name: Enable auto-merge for Dependabot PRs
-        if: ${{!contains(steps.metadata.outputs.dependency-names, 'maven-plugin-api') && (steps.metadata.outputs.update-type == 'version-update:semver-minor' || steps.metadata.outputs.update-type == 'version-update:semver-patch')}}
-        run: gh pr merge --auto --rebase "$PR_URL"
-        env:
-          PR_URL: ${{github.event.pull_request.html_url}}
-          GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
+    uses: davidmoten/workflows/.github/workflows/ci.yml@master