Initial packaging setup.

Author: Julian

.github/SECURITY.md

@@ -0,0 +1,15 @@
+# Security Policy
+
+## Supported Versions
+
+In general, only the latest released `jsonschema-lexer` version is supported and will receive updates.
+
+## Reporting a Vulnerability
+
+To report a security vulnerability, please send an email to `Julian+Security` at `GrayVines.com` with subject line `SECURITY (jsonschema-lexer)`.
+
+I will do my best to respond within 48 hours to acknowledge the message and discuss further steps.
+
+If the vulnerability is accepted, an advisory will be sent out via GitHub's security advisory functionality.
+
+For non-sensitive discussion related to this policy itself, feel free to open an issue on the issue tracker.

.github/dependabot.yml

@@ -0,0 +1,6 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"

.github/workflows/ci.yml

@@ -0,0 +1,98 @@
+name: CI
+
+on:
+  push:
+  pull_request:
+  release:
+    types: [published]
+  schedule:
+    # Daily at 7:37
+    - cron: "37 7 * * *"
+
+env:
+  PIP_DISABLE_PIP_VERSION_CHECK: "1"
+  PIP_NO_PYTHON_VERSION_WARNING: "1"
+
+jobs:
+  list:
+    runs-on: ubuntu-latest
+    outputs:
+      noxenvs: ${{ steps.noxenvs-matrix.outputs.noxenvs }}
+    steps:
+      - uses: actions/checkout@v3
+      - name: Set up nox
+        uses: wntrblm/[email protected]
+      - id: noxenvs-matrix
+        run: |
+          echo >>$GITHUB_OUTPUT noxenvs=$(
+            nox --list-sessions --json | jq '[.[].session]'
+          )
+
+  ci:
+    needs: list
+    runs-on: ${{ matrix.os }}
+    strategy:
+      fail-fast: false
+      matrix:
+        os: [macos-latest, ubuntu-latest]
+        noxenv: ${{ fromJson(needs.list.outputs.noxenvs) }}
+        posargs: [""]
+        include:
+          - os: ubuntu-latest
+            noxenv: "tests-3.11"
+            posargs: coverage github
+
+    steps:
+      - uses: actions/checkout@v3
+      - name: Install dependencies
+        run: sudo apt-get update && sudo apt-get install -y libenchant-2-dev
+        if: runner.os == 'Linux' && startsWith(matrix.noxenv, 'docs')
+      - name: Install dependencies
+        run: brew install enchant
+        if: runner.os == 'macOS' && startsWith(matrix.noxenv, 'docs')
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: |
+            3.8
+            3.9
+            3.10
+            3.11
+            3.12
+            pypy3.10
+          allow-prereleases: true
+      - name: Set up nox
+        uses: wntrblm/[email protected]
+      - name: Run nox
+        run: nox -s "${{ matrix.noxenv }}" -- ${{ matrix.posargs }}
+
+  packaging:
+    needs: ci
+    runs-on: ubuntu-latest
+    environment:
+      name: PyPI
+      url: https://pypi.org/p/jsonschema-lexer
+    permissions:
+      contents: write
+      id-token: write
+
+    steps:
+      - uses: actions/checkout@v3
+      - name: Set up Python
+        uses: actions/setup-python@v4
+        with:
+          python-version: "3.x"
+      - name: Install dependencies
+        run: python -m pip install build
+      - name: Create packages
+        run: python -m build .
+      - name: Publish to PyPI
+        if: github.event_name == 'push' && startsWith(github.event.ref, 'refs/tags')
+        uses: pypa/gh-action-pypi-publish@release/v1
+      - name: Create a Release
+        if: github.event_name == 'push' && startsWith(github.event.ref, 'refs/tags')
+        uses: softprops/action-gh-release@v1
+        with:
+          files: |
+            dist/*
+          generate_release_notes: true

.pre-commit-config.yaml

@@ -0,0 +1,33 @@
+repos:
+  - repo: https://github.com/pre-commit/pre-commit-hooks
+    rev: v4.5.0
+    hooks:
+      - id: check-added-large-files
+      - id: check-ast
+      - id: check-toml
+      - id: check-vcs-permalinks
+      - id: check-yaml
+      - id: debug-statements
+      - id: end-of-file-fixer
+      - id: mixed-line-ending
+        args: [--fix, lf]
+      - id: trailing-whitespace
+  - repo: https://github.com/astral-sh/ruff-pre-commit
+    rev: "v0.2.2"
+    hooks:
+      - id: ruff
+        args: [--fix, --exit-non-zero-on-fix]
+  - repo: https://github.com/PyCQA/isort
+    rev: 5.13.2
+    hooks:
+      - id: isort
+  - repo: https://github.com/psf/black
+    rev: 24.2.0
+    hooks:
+      - name: black
+        id: black
+        args: ["--line-length", "79"]
+  - repo: https://github.com/pre-commit/mirrors-prettier
+    rev: "v4.0.0-alpha.8"
+    hooks:
+      - id: prettier

README.rst

@@ -0,0 +1,17 @@
+====================
+``jsonschema-lexer``
+====================
+
+|PyPI| |Pythons| |CI|
+
+.. |PyPI| image:: https://img.shields.io/pypi/v/jsonschema-lexer.svg
+  :alt: PyPI version
+  :target: https://pypi.org/project/jsonschema-lexer/
+
+.. |Pythons| image:: https://img.shields.io/pypi/pyversions/jsonschema-lexer.svg
+  :alt: Supported Python versions
+  :target: https://pypi.org/project/jsonschema-lexer/
+
+.. |CI| image:: https://github.com/python-jsonschema/jsonschema-lexer/workflows/CI/badge.svg
+  :alt: Build status
+  :target: https://github.com/python-jsonschema/jsonschema-lexer/actions?query=workflow%3ACI

jsonschema_lexer/__init__.py

@@ -0,0 +1,3 @@
+"""
+Fill me in!
+"""

jsonschema_lexer/tests/__init__.py

@@ -0,0 +1,2 @@
+def test_it_imports():
+    import jsonschema_lexer  # noqa: F401

jsonschema_lexer/tests/test_integration.py

@@ -0,0 +1,128 @@
+from pathlib import Path
+from tempfile import TemporaryDirectory
+import os
+
+import nox
+
+ROOT = Path(__file__).parent
+PYPROJECT = ROOT / "pyproject.toml"
+DOCS = ROOT / "docs"
+
+PACKAGE = ROOT / "jsonschema_lexer"
+
+REQUIREMENTS = dict(
+    tests=ROOT / "test-requirements.txt",
+)
+REQUIREMENTS_IN = {
+    path.parent / f"{path.stem}.in" for path in REQUIREMENTS.values()
+}
+
+
+SUPPORTED = ["pypy3.10", "3.10", "3.11", "3.12"]
+LATEST = SUPPORTED[-1]
+
+nox.options.sessions = []
+
+
+def session(default=True, python=LATEST, **kwargs):  # noqa: D103
+    def _session(fn):
+        if default:
+            nox.options.sessions.append(kwargs.get("name", fn.__name__))
+        return nox.session(python=python, **kwargs)(fn)
+
+    return _session
+
+
+@session(python=SUPPORTED)
+def tests(session):
+    """
+    Run the test suite.
+    """
+    session.install("pytest")
+
+    if session.posargs and session.posargs[0] == "coverage":
+        if len(session.posargs) > 1 and session.posargs[1] == "github":
+            github = Path(os.environ["GITHUB_STEP_SUMMARY"])
+        else:
+            github = None
+
+        session.install("coverage[toml]")
+        session.run("coverage", "run", "-m", "pytest", PACKAGE)
+        if github is None:
+            session.run("coverage", "report")
+        else:
+            with github.open("a") as summary:
+                summary.write("### Coverage\n\n")
+                summary.flush()  # without a flush, output seems out of order.
+                session.run(
+                    "coverage",
+                    "report",
+                    "--format=markdown",
+                    stdout=summary,
+                )
+    else:
+        session.run("python", "-m", "pytest", *session.posargs, PACKAGE)
+
+
+@session(python=SUPPORTED)
+def audit(session):
+    """
+    Audit Python dependencies for vulnerabilities.
+    """
+    session.install("pip-audit", ROOT)
+    session.run("python", "-m", "pip_audit")
+
+
+@session(tags=["build"])
+def build(session):
+    """
+    Build a distribution suitable for PyPI and check its validity.
+    """
+    session.install("build", "twine")
+    with TemporaryDirectory() as tmpdir:
+        session.run("python", "-m", "build", ROOT, "--outdir", tmpdir)
+        session.run("twine", "check", "--strict", tmpdir + "/*")
+
+
+@session()
+def secrets(session):
+    """
+    Check for accidentally included secrets.
+    """
+    session.install("detect-secrets")
+    session.run("detect-secrets", "scan", ROOT)
+
+
+@session(tags=["style"])
+def style(session):
+    """
+    Check for coding style.
+    """
+    session.install("ruff")
+    session.run("ruff", "check", ROOT)
+
+
+@session()
+def typing(session):
+    """
+    Statically check typing annotations.
+    """
+    session.install("pyright", ROOT)
+    session.run("pyright", PACKAGE)
+
+
+@session(default=False)
+def requirements(session):
+    """
+    Update requirements files.
+    """
+    session.install("pip-tools")
+    for each in REQUIREMENTS_IN:
+        session.run(
+            "pip-compile",
+            "--resolver",
+            "backtracking",
+            "--strip-extras",
+            "-U",
+            each.relative_to(ROOT),
+        )