First Commit

Author: PDowney

.github/dependabot.yml

@@ -0,0 +1,51 @@
+# Dependabot configuration for automated dependency updates
+version: 2
+updates:
+  # Updates for GitHub Actions used in workflows
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "monday"
+      time: "09:00"
+    # Set custom labels on pull requests
+    labels:
+      - "dependencies"
+      - "security"
+      - "automated"
+    # Limit the number of open PRs
+    open-pull-requests-limit: 10
+    # Assign reviewers automatically
+    reviewers:
+      - "EngineScript"
+    # Create a group of updates for all actions
+    groups:
+      actions:
+        patterns:
+          - "*"
+          
+  # Updates for npm packages
+  - package-ecosystem: "npm"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "wednesday"
+    labels:
+      - "dependencies"
+      - "javascript"
+    open-pull-requests-limit: 5
+    reviewers:
+      - "EngineScript"
+      
+  # Updates for Composer packages
+  - package-ecosystem: "composer"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "friday"
+    labels:
+      - "dependencies"
+      - "php"
+    open-pull-requests-limit: 5
+    reviewers:
+      - "EngineScript"

.github/labeler.yml

@@ -0,0 +1,83 @@
+# Configuration for GitHub Actions Labeler
+# This file defines how automatic labels are applied to pull requests based on the files changed.
+# It helps categorize PRs by type of change (core functionality, frontend, documentation, etc.)
+# and makes it easier to identify what areas of the plugin are being modified.
+# The labels are applied automatically by the issue-management.yml workflow.
+
+# Core plugin functionality
+core:
+  - changed-files:
+    - any-glob-to-any-file: simple-wp-optimizer.php
+    - any-glob-to-any-file: includes/**/*
+    - any-glob-to-any-file: assets/js/**/*
+
+# Frontend related changes
+frontend:
+  - changed-files:
+    - any-glob-to-any-file: assets/css/**/*
+    - any-glob-to-any-file: assets/images/**/*
+    - any-glob-to-any-file: templates/**/*
+
+# Workflows and automation
+automation:
+  - changed-files:
+    - any-glob-to-any-file: .github/**/*
+
+# Security related changes
+security:
+  - changed-files:
+    - any-glob-to-any-file: '**/*.php'
+    - any-glob-to-any-file: SECURITY.md
+
+# Documentation
+documentation:
+  - changed-files:
+    - any-glob-to-any-file: README.md
+    - any-glob-to-any-file: '*.md'
+    - any-glob-to-any-file: docs/**/*
+
+# Export functionality
+optimization:
+  - changed-files:
+    - any-glob-to-any-file: '**/optimi*.php'
+    - any-glob-to-any-file: '**/cache*.php'
+    - any-glob-to-any-file: '**/performance*.php'
+
+# Database related changes
+database:
+  - changed-files:
+    - any-glob-to-any-file: '**/database*.php'
+    - any-glob-to-any-file: '**/db*.php'
+    - any-glob-to-any-file: '**/sql*.php'
+
+# WordPress integration
+wordpress:
+  - changed-files:
+    - any-glob-to-any-file: '**/wp-*.php'
+    - any-glob-to-any-file: '**/wordpress*.php'
+    - any-glob-to-any-file: '**/admin*.php'
+
+# Translations and localization
+i18n:
+  - changed-files:
+    - any-glob-to-any-file: languages/**/*
+    - any-glob-to-any-file: '**/*.pot'
+    - any-glob-to-any-file: '**/*.po'
+    - any-glob-to-any-file: '**/*.mo'
+
+# Dependencies
+dependencies:
+  - changed-files:
+    - any-glob-to-any-file: .github/dependabot.yml
+    - any-glob-to-any-file: composer.json
+    - any-glob-to-any-file: composer.lock
+    - any-glob-to-any-file: package.json
+    - any-glob-to-any-file: package-lock.json
+
+# Tests and quality
+testing:
+  - changed-files:
+    - any-glob-to-any-file: tests/**/*
+    - any-glob-to-any-file: phpunit.xml
+    - any-glob-to-any-file: .travis.yml
+    - any-glob-to-any-file: .phpcs.xml

.github/workflows/branch-cleanup.yml

@@ -0,0 +1,47 @@
+# This workflow automatically deletes the branch associated with a pull request
+# after it has been merged, unless the branch is protected (e.g., main, dev, staging).
+# It helps keep the repository clean by removing merged feature or bugfix branches.
+
+name: Branch Cleanup
+
+on:
+  pull_request:
+    types: [closed]
+
+permissions:
+  contents: write
+  pull-requests: read
+
+jobs:
+  cleanup:
+    runs-on: ubuntu-latest
+    
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+          token: ${{ secrets.GITHUB_TOKEN }}
+      
+      - name: Delete merged branch
+        if: github.event.pull_request.merged == true
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          BRANCH_NAME: ${{ github.event.pull_request.head.ref }}
+          REPOSITORY: ${{ github.repository }}
+        run: |
+          echo "Checking branch: $BRANCH_NAME"
+          
+          # Protected branch check - using quotes to prevent injection
+          if [[ "$BRANCH_NAME" =~ ^(main|master|dev|develop|staging|production)$ ]]; then
+            echo "::warning::Skipping deletion of protected branch: $BRANCH_NAME"
+            exit 0
+          fi
+          
+          # Attempt branch deletion - using quotes to prevent injection
+          echo "Attempting to delete branch: $BRANCH_NAME"
+          if git push origin --delete "$BRANCH_NAME" 2>/dev/null; then
+            echo "::notice::Successfully deleted branch: $BRANCH_NAME"
+          else
+            echo "::error::Failed to delete branch: $BRANCH_NAME"
+            exit 1
+          fi

.github/workflows/continuous-integration.yml

@@ -0,0 +1,95 @@
+# This workflow runs continuous integration checks on the Simple WP Optimizer plugin.
+# It performs code linting for both PHP and JavaScript files and builds the plugin package.
+# The workflow is triggered on push to main branch and on pull requests to ensure code quality.
+# It creates and stores a plugin zip file as an artifact that can be used for testing.
+
+name: Continuous Integration
+
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
+
+jobs:
+  lint:
+    name: Lint PHP and JavaScript
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup PHP
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: '8.0'
+          tools: composer:v2, phpcs
+          
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '16'
+          cache: 'npm'
+          
+      - name: Install PHP dependencies
+        run: composer install --prefer-dist --no-progress
+        
+      - name: Install JS dependencies
+        run: npm ci
+        
+      - name: Lint PHP
+        run: |
+          if [ -f .phpcs.xml ] || [ -f phpcs.xml.dist ]; then
+            composer run lint:php
+          else
+            echo "No PHP linting configuration found. Skipping."
+          fi
+          
+      - name: Lint JavaScript
+        run: |
+          if [ -f .eslintrc.js ] || [ -f .eslintrc.json ]; then
+            npm run lint:js
+          else
+            echo "No JS linting configuration found. Skipping."
+          fi
+          
+  build:
+    name: Build Plugin
+    runs-on: ubuntu-latest
+    needs: lint
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '16'
+          cache: 'npm'
+          
+      - name: Setup PHP
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: '8.0'
+          tools: composer:v2
+          
+      - name: Install dependencies
+        run: |
+          composer install --no-dev --prefer-dist --no-progress
+          npm ci
+          
+      - name: Build frontend assets
+        run: npm run build
+        
+      - name: Create plugin package
+        run: |
+          mkdir -p build/simple-wp-optimizer
+          cp -r assets includes languages templates simple-wp-optimizer.php readme.txt LICENSE build/simple-wp-optimizer/
+          cd build
+          zip -r simple-wp-optimizer.zip simple-wp-optimizer
+          
+      - name: Upload build artifact
+        uses: actions/upload-artifact@v4
+        with:
+          name: simple-wp-optimizer
+          path: build/simple-wp-optimizer.zip

.github/workflows/issue-management.yml

@@ -0,0 +1,32 @@
+# This workflow automatically triages new and reopened issues and pull requests.
+# It applies labels using the labeler action and marks issues/PRs as stale after 30 days of inactivity,
+# closing them 7 days after being marked stale. This helps keep the issue tracker organized and up to date.
+
+name: Issue Management
+
+on:
+  issues:
+    types: [opened, reopened]
+  pull_request:
+    types: [opened, reopened]
+
+permissions:
+  contents: write
+  pull-requests: write
+  issues: write
+
+jobs:
+  triage:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/labeler@v5
+      with:
+        repo-token: ${{ secrets.GITHUB_TOKEN }}
+        configuration-path: .github/labeler.yml
+        sync-labels: false
+    - uses: actions/stale@v9
+      with:
+        days-before-stale: 30
+        days-before-close: 7
+        stale-issue-message: 'This issue is stale due to inactivity'
+        stale-pr-message: 'This PR is stale due to inactivity'

.github/workflows/new-issue.yml

@@ -0,0 +1,32 @@
+# This workflow automatically posts a guidance comment on new issues.
+# It provides instructions to help users submit detailed information about their
+# WordPress environment and the issue they're experiencing with the Simple WP Optimizer plugin.
+# This helps maintainers diagnose and fix issues more efficiently.
+
+name: Issue Guidance
+
+on:
+  issues:
+    types: [opened]
+
+permissions:
+  contents: write
+  issues: write
+
+jobs:
+  guide:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Post guidance comment
+        uses: peter-evans/create-or-update-comment@v4
+        with:
+          issue-number: ${{ github.event.issue.number }}
+          body: |
+            Thanks for opening an issue. Please provide a detailed description of the problem you're facing. If you have error messages or logs, please include them as well.
+
+            To help us diagnose the issue, please include:
+            - WordPress version
+            - PHP version
+            - List of other plugins you're using
+            - Steps to reproduce the issue
+            - What you expected to happen vs. what actually happened

.github/workflows/new-pull-request.yml

@@ -0,0 +1,29 @@
+# This workflow automatically posts a guidance comment on new pull requests.
+# It welcomes contributors and provides a brief message to acknowledge their 
+# contribution to the Simple WP Optimizer plugin.
+# The workflow is triggered whenever a new pull request is opened.
+
+name: New Pull Request Guidance
+
+on:
+  pull_request_target:
+    types: [opened]
+
+jobs:
+  guide:
+    runs-on: ubuntu-latest
+    # Explicitly define permissions required by the job
+    permissions:
+      pull-requests: write
+    steps:
+      - name: Post guidance comment on new PR
+        uses: peter-evans/create-or-update-comment@v4
+        with:
+          issue-number: ${{ github.event.pull_request.number }}
+          body: |
+            Thanks for contributing to Simple WP Optimizer! 🎉
+
+
+            We'll review your PR soon!
+          # Token is implicitly provided with the defined permissions
+          # token: ${{ secrets.GITHUB_TOKEN }} # This line can be removed