Set up Dependabot, PR checks, and a CHANGELOG

.github/dependabot.yml

@@ -0,0 +1,24 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
+
+version: 2
+updates:
+  - package-ecosystem: "pip" # See documentation for possible values
+    directory: "/" # Location of package manifests
+    schedule:
+      interval: "weekly"
+    # Raise pull requests for dependency updates against `develop`
+    target-branch: "main"
+    allow:
+      - dependency-type: "development"
+    # Include a list of updates with a notable prefix
+    commit-message:
+      prefix: "chore"
+      prefix-development: "chore"
+      include: "scope"
+    groups:
+      # Note: The group order matters, since updates are assigned to the first matching group.
+      dev-dependencies:
+        dependency-type: "development"

.github/workflows/publish-release.yml

@@ -0,0 +1,42 @@
+#
+# Publishes the release to PyPI and docs to github pages
+#
+
+name: "publish release"
+
+on: 
+  release:
+    types: [created]
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - uses: actions/setup-python@v4
+        with:
+          python-version: '3.9'
+
+      - name: install build dependencies
+        run: python -m pip install --upgrade build
+
+      - name: build
+        run: python -m build
+
+      - uses: actions/upload-artifact@v3
+        with:
+          path: dist
+
+  publish-pypi:
+    runs-on: ubuntu-latest
+    needs: [build]
+    steps:
+      - uses: actions/download-artifact@v3
+        with:
+          name: artifact
+          path: dist
+
+      - uses: pypa/gh-action-pypi-publish@release/v1
+        with:
+          user: __token__
+          password: ${{ secrets.PYPI_API_TOKEN }}

.github/workflows/tests.yml

@@ -0,0 +1,24 @@
+name: unit-tests-and-static-analysis
+
+on: [pull_request]
+
+jobs:
+  build:
+
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        python-version: ['3.8', '3.9', '3.10', '3.11', '3.12']
+
+    steps:
+    - uses: actions/checkout@v3
+    - name: set up Python ${{ matrix.python-version }} Django ${{ matrix.django }}
+      uses: actions/setup-python@v3
+      with:
+        python-version: ${{ matrix.python-version }}
+    - name: install dependencies
+      run: |
+        make install
+    - name: run tests
+      run: |
+        make test-all

CHANGELOG.md

@@ -0,0 +1,11 @@
+# Changelog
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+# [Unreleased]
+- [PR 1](https://github.com/salesforce/django-request-queue-timeout/pull/1) Set up Dependabot, PR checks, and a CHANGELOG
+
+## [1.0.0] - 2023-11-15
+- Initial release