fix: enhance release notes with accurate versions, 20 badges, ISMS links, and complete autolabeler (#960)

Copilot · pethers · web-flow · commit 4c696e70bbdb · 2026-02-18T07:37:42.000+01:00
* Initial plan

* feat: Enhance release notes with comprehensive badges, ISMS links, and test evidence

- Add SLSA, OpenSSF Scorecard, CII Best Practices, FOSSA badges
- Add Hack23 ISMS policy badges (Information Security, Open Source, Secure Development)
- Add SonarCloud quality badges (Quality Gate, Security, Maintainability, Reliability)
- Add live test evidence links (Coverage, Unit Tests, E2E Tests)
- Add test documentation badges (Test Plans, Performance)
- Add compliance evidence badges (Compliance Evidence, Accessibility)
- Update tech stack to mention Node.js 24, Vite 7, React 19, TypeScript 5.9, Tailwind CSS 4
- Add build attestations and release information sections
- Sync labeler.yml with all labels used in release-drafter.yml
- Add missing labels: fix, design, style, database, build, config, javascript, github_actions, major, breaking

Co-authored-by: pethers &lt;1726836+pethers@users.noreply.github.com&gt;

* fix: update tech stack versions to match package.json and add missing autolabeler rules

- Update Vite to 7.3 (from package.json 7.3.1)
- Update React to 19.2 (from package.json 19.2.4)
- Update TypeScript to 5.9.3 (from package.json 5.9.3)
- Fix Node.js requirement to &gt;= 20.0.0 (package.json engines, not version 24)
- Add autolabeler rules for major, breaking, javascript, github_actions labels
- Maintain dual labeling system (labeler.yml + autolabeler) for consistency

Co-authored-by: pethers &lt;1726836+pethers@users.noreply.github.com&gt;

* fix: update Tailwind CSS version to 4.1 and align database label body matcher with PR template

- Update Tailwind CSS from "4" to "4.1" to match package.json (^4.1.18)
- Fix database label body matcher from "Analytics &amp; Data" to "Analytics &amp; Visualization" to match PR template
- Ensures version accuracy and prevents silent labeling failures

Co-authored-by: pethers &lt;1726836+pethers@users.noreply.github.com&gt;

---------

Co-authored-by: copilot-swe-agent[bot] &lt;198982749+Copilot@users.noreply.github.com&gt;
Co-authored-by: pethers &lt;1726836+pethers@users.noreply.github.com&gt;
diff --git a/.github/labeler.yml b/.github/labeler.yml
@@ -33,6 +33,15 @@ bug:
       - title: "bug:*"
       - body: "- [x] 🐛 Bug Fix"
 
+fix:
+  - any:
+      - changed-files:
+          - any-glob-to-any-file:
+              - "src/**/fix/**"
+              - "src/**/bug/**"
+      - title: "fix:*"
+      - body: "- [x] 🐛 Bug Fix"
+
 # 📈 Analytics and Visualization
 analytics:
   - any:
@@ -56,6 +65,17 @@ visualization:
       - title: "chart:*"
       - body: "- [x] 📈 Analytics & Visualization"
 
+database:
+  - any:
+      - changed-files:
+          - any-glob-to-any-file:
+              - "src/**/database/**"
+              - "src/**/db/**"
+              - "**/*.sql"
+      - title: "database:*"
+      - title: "db:*"
+      - body: "- [x] 📈 Analytics & Visualization"
+
 # 🎨 UI/UX Improvements
 ui:
   - any:
@@ -76,6 +96,28 @@ ui:
       - title: "design:*"
       - body: "- [x] 🎨 UI/UX Improvements"
 
+design:
+  - any:
+      - changed-files:
+          - any-glob-to-any-file:
+              - "src/**/theme/**"
+              - "src/**/*.styles.*"
+              - "public/**/*.svg"
+              - "public/**/*.png"
+      - title: "design:*"
+      - body: "- [x] 🎨 UI/UX Improvements"
+
+style:
+  - any:
+      - changed-files:
+          - any-glob-to-any-file:
+              - "src/**/*.css"
+              - "src/**/*.scss"
+              - "src/**/*.less"
+              - "src/**/*.styles.*"
+      - title: "style:*"
+      - body: "- [x] 🎨 UI/UX Improvements"
+
 # 🏗️ Infrastructure & Performance
 infrastructure:
   - any:
@@ -105,6 +147,31 @@ performance:
       - title: "optimize:*"
       - body: "- [x] 🏗️ Infrastructure & Performance"
 
+build:
+  - any:
+      - changed-files:
+          - any-glob-to-any-file:
+              - "**/vite.config.*"
+              - "**/tsconfig.json"
+              - "**/webpack.config.*"
+              - "**/rollup.config.*"
+              - "scripts/build/**"
+      - title: "build:*"
+      - title: "chore(build):*"
+      - body: "- [x] 🏗️ Infrastructure & Performance"
+
+config:
+  - any:
+      - changed-files:
+          - any-glob-to-any-file:
+              - "**/*.config.*"
+              - ".github/**/*.yml"
+              - ".github/**/*.yaml"
+              - "configs/**"
+      - title: "config:*"
+      - title: "chore(config):*"
+      - body: "- [x] 🏗️ Infrastructure & Performance"
+
 # 🔄 Code Quality & Refactoring
 refactor:
   - any:
@@ -184,6 +251,18 @@ dependencies:
       - title: "dependencies:*"
       - body: "- [x] 📦 Dependencies Update"
 
+javascript:
+  - changed-files:
+      - any-glob-to-any-file:
+          - "package.json"
+          - "package-lock.json"
+
+github_actions:
+  - changed-files:
+      - any-glob-to-any-file:
+          - ".github/workflows/**"
+          - ".github/actions/**"
+
 # Coverage-driven labels (based on test coverage report)
 needs-tests:
   - changed-files:
@@ -316,3 +395,17 @@ security-high:
 
 security-very-high:
   - body: "- [x] Very High"
+
+# Version Control Labels
+major:
+  - any:
+      - title: "major:*"
+      - title: "breaking:*"
+      - title: "BREAKING CHANGE:*"
+      - body: "BREAKING CHANGE"
+
+breaking:
+  - any:
+      - title: "breaking:*"
+      - title: "BREAKING CHANGE:*"
+      - body: "BREAKING CHANGE"
diff --git a/.github/release-drafter.yml b/.github/release-drafter.yml
@@ -89,20 +89,74 @@ template: |
   # Highlights
   $CHANGES
 
-  ## Security Compliance
+  ---
+
+  ## 🛡️ Security & Compliance
+  
+  ### Build Attestations & Supply Chain Security
   [![SLSA 3](https://slsa.dev/images/gh-badge-level3.svg)](https://github.com/Hack23/cia-compliance-manager/attestations/)
+  [![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/Hack23/cia-compliance-manager/badge)](https://scorecard.dev/viewer/?uri=github.com/Hack23/cia-compliance-manager)
+  [![CII Best Practices](https://bestpractices.coreinfrastructure.org/projects/10365/badge)](https://bestpractices.coreinfrastructure.org/projects/10365)
+  [![FOSSA Status](https://app.fossa.io/api/projects/git%2Bgithub.com%2FHack23%2Fcia-compliance-manager.svg?type=shield)](https://app.fossa.io/projects/git%2Bgithub.com%2FHack23%2Fcia-compliance-manager?ref=badge_shield)
+  
+  ### Hack23 ISMS Policies
+  [![Information Security Policy](https://img.shields.io/badge/ISMS-Information_Security_Policy-0A66C2?style=flat&logo=shield&logoColor=white)](https://github.com/Hack23/ISMS-PUBLIC/blob/main/Information_Security_Policy.md)
+  [![Open Source Policy](https://img.shields.io/badge/ISMS-Open_Source_Policy-0A66C2?style=flat&logo=opensource&logoColor=white)](https://github.com/Hack23/ISMS-PUBLIC/blob/main/Open_Source_Policy.md)
+  [![Secure Development](https://img.shields.io/badge/ISMS-Secure_Development_Policy-0A66C2?style=flat&logo=github&logoColor=white)](https://github.com/Hack23/ISMS-PUBLIC/blob/main/Secure_Development_Policy.md)
+  
+  ### Code Quality & Security Analysis
+  [![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=Hack23_cia-compliance-manager&metric=alert_status)](https://sonarcloud.io/summary/new_code?id=Hack23_cia-compliance-manager)
+  [![Security Rating](https://sonarcloud.io/api/project_badges/measure?project=Hack23_cia-compliance-manager&metric=security_rating)](https://sonarcloud.io/summary/new_code?id=Hack23_cia-compliance-manager)
+  [![Maintainability Rating](https://sonarcloud.io/api/project_badges/measure?project=Hack23_cia-compliance-manager&metric=sqale_rating)](https://sonarcloud.io/summary/new_code?id=Hack23_cia-compliance-manager)
+  [![Reliability Rating](https://sonarcloud.io/api/project_badges/measure?project=Hack23_cia-compliance-manager&metric=reliability_rating)](https://sonarcloud.io/summary/new_code?id=Hack23_cia-compliance-manager)
+
+  ---
+
+  ## 🧪 Testing & Evidence
+  
+  ### Test Reports & Coverage (Live Results)
+  [![Coverage](https://img.shields.io/badge/Coverage-Live%20Results-success?style=flat&logo=vitest&logoColor=white)](https://ciacompliancemanager.com/docs/coverage/)
+  [![Unit Tests](https://img.shields.io/badge/Unit%20Tests-Live%20Results-success?style=flat&logo=vitest&logoColor=white)](https://ciacompliancemanager.com/docs/test-results/)
+  [![E2E Tests](https://img.shields.io/badge/E2E%20Tests-Live%20Results-success?style=flat&logo=cypress&logoColor=white)](https://ciacompliancemanager.com/docs/cypress/mochawesome/)
+  [![Code Coverage](https://sonarcloud.io/api/project_badges/measure?project=Hack23_cia-compliance-manager&metric=coverage)](https://sonarcloud.io/summary/new_code?id=Hack23_cia-compliance-manager)
   
-  ## Tech Stack
-  - ⚡ **Vite** - Fast build tool
-  - ⚛️ **React 19** - Modern UI framework
-  - 🔷 **TypeScript** - Type-safe development
-  - 📊 **Recharts** - Data visualization
-  - 🧪 **Vitest** - Unit testing
+  ### Test Documentation
+  [![Test Plan](https://img.shields.io/badge/Unit_Test_Plan-Documentation-blue?style=flat&logo=markdown&logoColor=white)](https://github.com/Hack23/cia-compliance-manager/blob/main/docs/UnitTestPlan.md)
+  [![E2E Plan](https://img.shields.io/badge/E2E_Test_Plan-Documentation-blue?style=flat&logo=markdown&logoColor=white)](https://github.com/Hack23/cia-compliance-manager/blob/main/docs/E2ETestPlan.md)
+  [![Performance](https://img.shields.io/badge/Performance_Testing-Documentation-blue?style=flat&logo=lighthouse&logoColor=white)](https://github.com/Hack23/cia-compliance-manager/blob/main/docs/performance-testing.md)
+  
+  ### Compliance Evidence
+  [![Compliance Evidence](https://img.shields.io/badge/Compliance-Evidence_Catalog-success?style=flat&logo=shield&logoColor=white)](https://github.com/Hack23/cia-compliance-manager/blob/main/docs/COMPLIANCE_EVIDENCE.md)
+  [![Accessibility](https://img.shields.io/badge/Accessibility-WCAG_2.1_AA-success?style=flat&logo=accessibility&logoColor=white)](https://github.com/Hack23/cia-compliance-manager/blob/main/docs/ACCESSIBILITY_COMPLIANCE.md)
+
+  ---
+
+  ## 🚀 Tech Stack
+  
+  - ⚡ **Vite 7.3** - Lightning-fast build tool
+  - ⚛️ **React 19.2** - Modern UI framework with enhanced performance
+  - 🔷 **TypeScript 5.9.3** - Type-safe development
+  - 📊 **Chart.js** - Interactive data visualization
+  - 🧪 **Vitest** - Fast unit testing framework
+  - 🌐 **Cypress** - End-to-end testing
+  - 📦 **Node.js >= 20.0.0** - Runtime environment (see nodejs.org for LTS schedule)
+  - 🎨 **Tailwind CSS 4.1** - Utility-first CSS framework
 
-  ## Contributors
+  ---
+
+  ## 🤝 Contributors
+  
   Thanks to $CONTRIBUTORS for their contributions to this release!
 
+  ---
+
+  ## 📋 Release Information
+  
   **Full Changelog**: https://github.com/Hack23/cia-compliance-manager/compare/$PREVIOUS_TAG...$RESOLVED_VERSION
+  
+  **Build Attestations**: [View SLSA Attestations](https://github.com/Hack23/cia-compliance-manager/attestations/)
+  
+  **Download**: [Release Assets](https://github.com/Hack23/cia-compliance-manager/releases/tag/$RESOLVED_VERSION)
 
 version-resolver:
   major:
@@ -260,3 +314,28 @@ autolabeler:
       - '**/*.spec.*'
       - 'cypress/**/*'
       - '__tests__/**/*'
+  
+  # Version Control & Breaking Changes
+  - label: "major"
+    title:
+      - '/^major(\([^)]+\))?:/i'
+      - '/^breaking(\([^)]+\))?:/i'
+      - '/^BREAKING CHANGE:/i'
+      - '/\[breaking\]/i'
+  
+  - label: "breaking"
+    title:
+      - '/^breaking(\([^)]+\))?:/i'
+      - '/^BREAKING CHANGE:/i'
+      - '/\[breaking\]/i'
+  
+  # Dependencies Subcategories
+  - label: "javascript"
+    files:
+      - 'package.json'
+      - 'package-lock.json'
+  
+  - label: "github_actions"
+    files:
+      - '.github/workflows/**'
+      - '.github/actions/**'
