feat: let's fork and release

[JounQin]

close #1

Summary by CodeRabbit

• Documentation
  • Rebranded the project to @unts/json-schema-migrate with enhanced documentation, updated installation instructions for multiple package managers, and added sponsor and changelog sections.
• Chores
  • Introduced new automation workflows for building, testing, formatting, and releasing.
  • Updated various configuration settings (linting, formatting, versioning, dependency management) and refreshed licensing details.
• Refactor
  • Improved code clarity and consistency by modernizing module imports and refining type definitions.
• New Features
  • Added new configuration files for managing changesets, linting, and size limits.
  • Introduced workflows for CI, CodeQL analysis, and package size reporting.
• Bug Fixes
  • Enhanced error handling and type safety in schema migration functions.

[changeset-bot]

⚠️ No Changeset found

Latest commit: 6ce4dd1

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[Copilot]

Pull Request Overview

This PR sets up several automation workflows and configurations aimed at streamlining repository tasks around release, linting, testing, code quality, and package size reporting. Key changes include the addition of new workflow configurations (e.g., release, CI, CodeQL, autofix), new configuration files (e.g., simple-git-hooks, lintstagedrc), and the removal of the existing ESLint configuration.

Reviewed Changes

Copilot reviewed 34 out of 43 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
.simple-git-hooks.js	Exports default from a custom simple-git-hooks module
.lintstagedrc.js	Exports default from a custom lint-staged configuration
.github/workflows/size-limit.yml	Adds size limit checking workflow
.github/workflows/release.yml	Introduces release workflow using changesets
.github/workflows/pkg-size.yml	Adds package size reporting workflow
.github/workflows/pkg-pr-new.yml	Adds workflow for publishing any commit
.github/workflows/codeql.yml	Implements CodeQL analysis workflow
.github/workflows/ci.yml	Sets up CI workflow with lint, build, test and Codecov
.github/workflows/autofix.yml	Adds autofix workflow for pull requests
.eslintrc.js	Removed ESLint configuration file
.changeset/README.md	Adds autogenerated Changesets documentation file

Files not reviewed (9)

• .changeset/config.json: Language not supported
• .codesandbox/ci.json: Language not supported
• .commitlintrc: Language not supported
• .editorconfig: Language not supported
• .github/FUNDING.yml: Language not supported
• .github/workflows/build.yml: Language not supported
• .github/workflows/publish.yml: Language not supported
• .prettierignore: Language not supported
• .prettierrc: Language not supported

Comments suppressed due to low confidence (3)

.github/workflows/release.yml:46

• The 'version' parameter is set to execute 'yarn run version', which may not be supported by the changesets action. Consider using a precomputed version string or verify that the command is executed as intended.

          version: yarn run version

.github/workflows/release.yml:49

• The secret is named 'GH_TOKEN' here while other workflows use 'GITHUB_TOKEN'. Please confirm if this discrepancy is intentional and that the correct token is being referenced.

          GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}

.eslintrc.js:1

• The ESLint configuration file is completely removed in this PR. Please ensure an alternative configuration is provided if linting is still required.

const jsConfig = require("@ajv-validator/config/.eslintrc_js")

[codesandbox-ci]

This pull request is automatically built and testable in CodeSandbox.

To see build info of the built libraries, click here or the icon next to each commit SHA.

[socket-security]

Report too large to display inline

View full report↗︎

[socket-security]

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	Source	CI
Protestware or potentially unwanted behavior	npm/es5-ext@0.10.64	Note: This package prints a protestware console message on install regarding Ukraine for users with Russian language locale	yarn.lock	⚠︎
Protestware or potentially unwanted behavior	npm/es5-ext@0.10.64	Note: The script attempts to run a local post-install script, which could potentially contain malicious code. The error handling suggests that it is designed to fail silently, which is a common tactic in malicious scripts.	yarn.lock	⚠︎

View full report↗︎

Next steps

What is protestware?

This package is a joke, parody, or includes undocumented or hidden behavior unrelated to its primary function.

Consider that consuming this package may come along with functionality unrelated to its primary purpose.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore npm/es5-ext@0.10.64

[github-actions]

📊 Package size report   -10.4%↓

File	Before	After
.eslintrc.js	600 B	—
.github/FUNDING.yml	20 B	—
.github/workflows/build.yml	582 B	—
.github/workflows/publish.yml	678 B	—
dist/index.d.ts	291 B	—
dist/index.js	7.3 kB	—
dist/index.js.map	5.2 kB	—
index.d.cts	—	80 B
jest.config.js	69 B	—
lib/index.cjs	—	6.3 kB
lib/index.d.ts	—	376 B
lib/index.js	—	7.3 kB
lib/index.js.map	—	5.6 kB
LICENSE	1.1 kB	3%↑1.1 kB
package.json	1.7 kB	62%↑2.7 kB
README.md	2.0 kB	183%↑5.7 kB
spec/.eslintrc.js	506 B	—
spec/fixtures/expected-schema-from-draft-04-to-07.json	1.1 kB	—
spec/fixtures/expected-schema-from-draft-04-to-2019.json	1.2 kB	—
spec/fixtures/expected-schema-from-draft-04-to-2020.json	1.2 kB	—
spec/fixtures/schema-draft-04.json	1.3 kB	—
spec/migrate.spec.ts	1.6 kB	—
spec/tsconfig.json	131 B	—
src/index.ts	5.9 kB	—
tsconfig.json	221 B	—
Total (Includes all files)	32.6 kB	-10.4%↓29.2 kB
Tarball size	8.2 kB	-7.4%↓7.5 kB

_{🤖 This report was automatically generated by pkg-size-action}

[codecov]

Welcome to Codecov 🎉

Once you merge this PR into your default branch, you're all set! Codecov will compare coverage reports and display results in all future pull requests.

Thanks for integrating Codecov - We've got you covered ☂️

[coderabbitai]

Caution

Review failed

The pull request is closed.

Walkthrough

This pull request introduces a wide range of updates across repository configurations and workflows. New configuration files for changesets, ESLint, Prettier, TypeScript, and Yarn have been added along with updated CI/CD workflows for code formatting, testing, size reporting, release automation, and security analysis. The package metadata has been rebranded and reorganized to support ECMAScript modules, while outdated configuration and test files have been removed to streamline the development process.

Changes

File(s)	Change Summary
Automation Workflows: .github/workflows/autofix.yml, .github/workflows/ci.yml, .github/workflows/codeql.yml, .github/workflows/pkg-pr-new.yml, .github/workflows/pkg-size.yml, .github/workflows/release.yml, .github/workflows/size-limit.yml, .github/FUNDING.yml	Added new GitHub Actions workflows for autofix, CI, CodeQL, package publish, release, package size, and size limit; removed outdated build and publish workflows; updated funding information.
Configuration & Tooling Files: .changeset/README.md, .changeset/config.json, .codesandbox/ci.json, .commitlintrc, .editorconfig, .gitattributes, .lintstagedrc.js, .prettierignore, .prettierc, .simple-git-hooks.js, .size-limit.json, .yarnrc.yml, eslint.config.js, tsconfig.json (root & src/tsconfig.json)	Introduced and updated configs for changesets, code style, linting, package management, size limits, and TypeScript compiler options.
Project Metadata & Source: LICENSE, README.md, package.json, src/index.ts, index.d.cts	Rebranded package to @unts/json-schema-migrate, updated license and documentation, restructured package entries (exports, module, types), and refined source code types and error handling.
Test & Removed Files: Removed files such as .eslintrc.js, .github/workflows/build.yml, .github/workflows/publish.yml, jest.config.js, spec/.eslintrc.js, spec/migrate.spec.ts, spec/tsconfig.json, spec/fixtures/schema-draft-04.json; reformatted test fixtures and added test/migrate.spec.ts	Deleted outdated configurations and test files, reformatted JSON schema fixtures, and integrated new migration tests for schema validation.

Sequence Diagram(s)

sequenceDiagram
    participant Dev as Developer
    participant GitHub as GitHub Actions
    participant Checkout as Checkout Repo
    participant Node as Setup Node.js
    participant Install as Install Dependencies
    participant Build as Build Project
    participant Changesets as Changesets Action
    Dev->>GitHub: Push to master
    GitHub->>Checkout: Checkout code
    Checkout->>Node: Setup Node.js (LTS)
    Node->>Install: Install dependencies (Yarn)
    Install->>Build: Build project
    Build->>Changesets: Execute release process (create PR/publish)
    Changesets->>GitHub: Finalize release workflow

Loading

sequenceDiagram
    participant Dev as Developer
    participant GitHub as GitHub Actions
    participant Matrix as Matrix Runner
    participant LintTest as Lint & Test Steps
    participant Coverage as Upload Coverage
    Dev->>GitHub: Push/PR trigger
    GitHub->>Matrix: Initiate matrix job (various OS/Node versions)
    Matrix->>LintTest: Run linting and tests
    LintTest->>Coverage: Upload coverage to Codecov

Loading

Assessment against linked issues

Objective	Addressed	Explanation
New changesets documentation and automation ([#1])	✅
Automated CI/CD and release processes ([#1])	✅
Standardized development configurations (ESLint, TypeScript, Prettier) ([#1])	✅

Poem

I'm a hopping rabbit in a code-filled glen,
Celebrating new workflows again and again.
Configs updated with a skip and a leap,
Automation delights, no time for sleep!
With each commit, my heart does bound—
A whimsical cheer in every line found!
🐇✨

Warning

There were issues while running some tools. Please review the errors and either fix the tool's configuration or disable the tool if it's a critical failure.

🔧 ESLint

If the error stems from missing dependencies, add them to the package.json file. For unrecoverable errors (e.g., due to private dependencies), disable the tool in the CodeRabbit configuration.

.lintstagedrc.js

Oops! Something went wrong! :(

ESLint: 9.23.0

Error [ERR_MODULE_NOT_FOUND]: Cannot find package '@1stg/eslint-config' imported from /eslint.config.js
at packageResolve (node:internal/modules/esm/resolve:839:9)
at moduleResolve (node:internal/modules/esm/resolve:908:18)
at defaultResolve (node:internal/modules/esm/resolve:1038:11)
at ModuleLoader.defaultResolve (node:internal/modules/esm/loader:557:12)
at ModuleLoader.resolve (node:internal/modules/esm/loader:525:25)
at ModuleLoader.getModuleJob (node:internal/modules/esm/loader:246:38)
at ModuleJob._link (node:internal/modules/esm/module_job:126:49)

eslint.config.js

Oops! Something went wrong! :(

ESLint: 9.23.0

Error [ERR_MODULE_NOT_FOUND]: Cannot find package '@1stg/eslint-config' imported from /eslint.config.js
at packageResolve (node:internal/modules/esm/resolve:839:9)
at moduleResolve (node:internal/modules/esm/resolve:908:18)
at defaultResolve (node:internal/modules/esm/resolve:1038:11)
at ModuleLoader.defaultResolve (node:internal/modules/esm/loader:557:12)
at ModuleLoader.resolve (node:internal/modules/esm/loader:525:25)
at ModuleLoader.getModuleJob (node:internal/modules/esm/loader:246:38)
at ModuleJob._link (node:internal/modules/esm/module_job:126:49)

.simple-git-hooks.js

Oops! Something went wrong! :(

ESLint: 9.23.0

Error [ERR_MODULE_NOT_FOUND]: Cannot find package '@1stg/eslint-config' imported from /eslint.config.js
at packageResolve (node:internal/modules/esm/resolve:839:9)
at moduleResolve (node:internal/modules/esm/resolve:908:18)
at defaultResolve (node:internal/modules/esm/resolve:1038:11)
at ModuleLoader.defaultResolve (node:internal/modules/esm/loader:557:12)
at ModuleLoader.resolve (node:internal/modules/esm/loader:525:25)
at ModuleLoader.getModuleJob (node:internal/modules/esm/loader:246:38)
at ModuleJob._link (node:internal/modules/esm/module_job:126:49)

• 3 others

---

📜 Recent review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 7571107 and 6ce4dd1.

⛔ Files ignored due to path filters (3)

• .yarn/plugins/plugin-prepare-lifecycle.cjs is excluded by !**/.yarn/**
• .yarn/releases/yarn-4.8.1.cjs is excluded by !**/.yarn/**
• yarn.lock is excluded by !**/yarn.lock, !**/*.lock

📒 Files selected for processing (42)

• .changeset/README.md (1 hunks)
• .changeset/config.json (1 hunks)
• .codesandbox/ci.json (1 hunks)
• .commitlintrc (1 hunks)
• .editorconfig (1 hunks)
• .eslintrc.js (0 hunks)
• .gitattributes (1 hunks)
• .github/FUNDING.yml (0 hunks)
• .github/workflows/autofix.yml (1 hunks)
• .github/workflows/build.yml (0 hunks)
• .github/workflows/ci.yml (1 hunks)
• .github/workflows/codeql.yml (1 hunks)
• .github/workflows/pkg-pr-new.yml (1 hunks)
• .github/workflows/pkg-size.yml (1 hunks)
• .github/workflows/publish.yml (0 hunks)
• .github/workflows/release.yml (1 hunks)
• .github/workflows/size-limit.yml (1 hunks)
• .gitignore (1 hunks)
• .lintstagedrc.js (1 hunks)
• .prettierignore (1 hunks)
• .prettierrc (1 hunks)
• .simple-git-hooks.js (1 hunks)
• .size-limit.json (1 hunks)
• .yarnrc.yml (1 hunks)
• LICENSE (1 hunks)
• README.md (3 hunks)
• eslint.config.js (1 hunks)
• index.d.cts (1 hunks)
• jest.config.js (0 hunks)
• package.json (1 hunks)
• spec/.eslintrc.js (0 hunks)
• spec/fixtures/schema-draft-04.json (0 hunks)
• spec/migrate.spec.ts (0 hunks)
• spec/tsconfig.json (0 hunks)
• src/index.ts (3 hunks)
• src/tsconfig.json (1 hunks)
• test/fixtures/expected-schema-from-draft-04-to-07.json (1 hunks)
• test/fixtures/expected-schema-from-draft-04-to-2019.json (1 hunks)
• test/fixtures/expected-schema-from-draft-04-to-2020.json (1 hunks)
• test/fixtures/schema-draft-04.json (1 hunks)
• test/migrate.spec.ts (1 hunks)
• tsconfig.json (1 hunks)

✨ Finishing Touches

• 📝 Generate Docstrings

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai plan to trigger planning for file edits and PR creation.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[JounQin]

@codecov-ai-reviewer review

[codecov-ai]

On it! We are reviewing the PR and will provide feedback shortly.

[pkg-pr-new]

Open in StackBlitz

npm i https://pkg.pr.new/un-ts/json-schema-migrate/@unts/json-schema-migrate@2

commit: 6ce4dd1

[JounQin]

There were issues while running some tools. Please review the errors and either fix the tool's configuration or disable the tool if it's a critical failure.

@coderabbitai We use yarn v4, it should be totally fine.

[coderabbitai]

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Check if there's a yarn configuration file and its version
if [ -f package.json ]; then
  echo "Content of package.json:"
  cat package.json
fi

if [ -f yarn.lock ]; then
  echo -e "\nYarn lock file exists"
  head -n 10 yarn.lock
fi

if [ -f .yarnrc.yml ]; then
  echo -e "\nContent of .yarnrc.yml:"
  cat .yarnrc.yml
fi

# Check if there are any CI configuration files that might reference tools
if [ -f .github/workflows ]; then
  echo -e "\nGitHub workflow files:"
  ls -la .github/workflows
  
  for file in $(find .github/workflows -type f -name "*.yml" -o -name "*.yaml" 2>/dev/null); do
    echo -e "\nContent of $file:"
    cat "$file"
  done
fi

# List all directories to understand project structure
echo -e "\nProject structure:"
ls -la

# Check if there are any error logs or build artifacts
if [ -d logs ]; then
  echo -e "\nContent of logs directory:"
  ls -la logs
fi

Length of output: 5458

---

🏁 Script executed:

#!/bin/bash
# Check GitHub workflow files to understand CI setup
echo "Looking for GitHub workflows:"
find .github -type f -name "*.yml" -o -name "*.yaml" 2>/dev/null | xargs ls -la

for file in $(find .github -type f -name "*.yml" -o -name "*.yaml" 2>/dev/null); do
  echo -e "\nContent of $file:"
  cat "$file"
done

# Check if there are any logs from codecov
echo -e "\nChecking for codecov files:"
find . -name "codecov*" 2>/dev/null

# Look for any error logs
echo -e "\nChecking for error logs:"
find . -name "*.log" 2>/dev/null

# Check for Jest test results that might show errors
echo -e "\nChecking test coverage report:"
find . -path "*/coverage/*" -type f 2>/dev/null | head -5

# Check the Yarn cache and installations
echo -e "\nChecking Yarn setup:"
ls -la .yarn/

Length of output: 9333

---

🏁 Script executed:

#!/bin/bash
# Let's check if there are any logs or error files from CodeRabbit's review process

# Check for any error files in common locations
echo "Checking for error files in common locations:"
find . -name "error*" -o -name "*failed*" 2>/dev/null

# Let's look at the src directory to understand the project structure
echo -e "\nProject source code structure:"
find src -type f | sort

# Look at test directory structure to understand testing setup
echo -e "\nTest directory structure:"
find test -type f | sort

# Check specific Yarn configurations that might be causing issues
echo -e "\nChecking Yarn plugin details:"
ls -la .yarn/plugins/
cat .yarn/plugins/plugin-prepare-lifecycle.cjs 2>/dev/null | head -20

# Let's check the yarn version in releases directory
echo -e "\nYarn release version:"
ls -la .yarn/releases/

Length of output: 1415

---

@JounQin I've examined your repository setup and confirmed that your Yarn v4.8.1 configuration appears to be correctly set up. I can see:

• Proper Yarn v4.8.1 setup with yarn-4.8.1.cjs in the .yarn/releases directory
• Correct .yarnrc.yml configuration with nodeLinker set to node-modules
• GitHub workflows properly configured to use Yarn

You're right that Yarn v4 should work fine. The issue you encountered was likely with our automated review process, which might need adjustments to better support Yarn v4 projects. I'll make note of this to improve our compatibility with modern Yarn versions.

Would you like me to proceed with reviewing your PR?

---

✏️ Learnings added

Learnt from: JounQin
URL: https://github.com/un-ts/json-schema-migrate/pull/2

Timestamp: 2025-04-03T03:15:42.836Z
Learning: This repository uses Yarn v4.8.1 as its package manager with nodeLinker set to node-modules and contains a custom plugin for prepare lifecycle.

Note: Learnings are effective only in the context of similar code segments. To apply general coding guidelines, please configure review instructions. You can manage existing learnings in the app.

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.