Use new separate workflows for PRs and pushes

These new workflows also start using a new reusable `gh-action-nox`,
native arm runners and Ubuntu 24.04, as Ubuntu 20.04 will be removed
from GitHub runners by April's 1st. Python 3.12 is also added to the
test matrix.

https://github.blog/changelog/2025-01-15-github-actions-ubuntu-20-runner-image-brownout-dates-and-other-breaking-changes/

The PR action is more lightweight, and only tests with one matrix (the
most widely used), so PRs can be tested more quickly.

The push workflow does a more intense testing with all matrix
combinations. This also runs for the merge queue, so before PRs are
actually merged the tests will run for the complete matrix.

Signed-off-by: Leandro Lucarella <[email protected]>

Author: llucax

cookiecutter/{{cookiecutter.github_repo_name}}/.github/workflows/ci-pr.yaml

@@ -0,0 +1,96 @@
+{% raw -%}
+name: Test PR
+
+on:
+  pull_request:
+
+env:
+  # Please make sure this version is included in the `matrix`, as the
+  # `matrix` section can't use `env`, so it must be entered manually
+  DEFAULT_PYTHON_VERSION: '3.11'
+  # It would be nice to be able to also define a DEFAULT_UBUNTU_VERSION
+  # but sadly `env` can't be used either in `runs-on`.
+
+jobs:
+  {% endraw %}{% if cookiecutter.type == "api" %}{% raw -%}
+  protolint:
+    name: Check proto files with protolint
+    runs-on: ubuntu-24.04
+
+    steps:
+      - name: Setup Git
+        uses: frequenz-floss/[email protected]
+        # TODO(cookiecutter): Uncomment this for projects with private dependencies
+        # with:
+        #   username: ${{ secrets.GIT_USER }}
+        #   password: ${{ secrets.GIT_PASS }}
+
+      - name: Fetch sources
+        uses: actions/checkout@v3
+        with:
+          submodules: true
+
+      - name: Run protolint
+        # Only use hashes here, as we are passing the github token, we want to
+        # make sure updates are done consciously to avoid security issues if the
+        # action repo gets hacked
+        uses: yoheimuta/action-protolint@e94cc01b1ad085ed9427098442f66f2519c723eb # v1.0.0
+        with:
+          fail_on_error: true
+          filter_mode: nofilter
+          github_token: ${{ secrets.github_token }}
+          protolint_flags: proto/
+          protolint_version: "0.53.0"
+          reporter: github-check
+
+  {% endraw %}{% endif %}{% raw -%}
+  nox:
+    name: Test with nox
+    runs-on: ubuntu-24.04
+
+    steps:
+      - name: Run nox
+        uses: frequenz-floss/[email protected]
+        with:
+          python-version: "3.11"
+          nox-session: ci_checks_max
+          # TODO(cookiecutter): Uncomment this for projects with private dependencies
+          # git-username: ${{ secrets.GIT_USER }}
+          # git-password: ${{ secrets.GIT_PASS }}
+
+  test-docs:
+    name: Test documentation website generation
+    runs-on: ubuntu-24.04
+    steps:
+      - name: Setup Git
+        uses: frequenz-floss/[email protected]
+        # TODO(cookiecutter): Uncomment this for projects with private dependencies
+        # with:
+        #   username: ${{ secrets.GIT_USER }}
+        #   password: ${{ secrets.GIT_PASS }}
+
+      - name: Fetch sources
+        uses: actions/checkout@v4
+        with:
+          submodules: true
+
+      - name: Setup Python
+        uses: frequenz-floss/[email protected]
+        with:
+          python-version: ${{ env.DEFAULT_PYTHON_VERSION }}
+          dependencies: .[dev-mkdocs]
+
+      - name: Generate the documentation
+        env:
+          MIKE_VERSION: gh-${{ github.job }}
+        run: |
+          mike deploy $MIKE_VERSION
+          mike set-default $MIKE_VERSION
+
+      - name: Upload site
+        uses: actions/upload-artifact@v4
+        with:
+          name: docs-site
+          path: site/
+          if-no-files-found: error
+{%- endraw %}