Merge remote-tracking branch 'upstream/develop' into ndarray-dmeanvarpn

Author: stdlib-bot

.github/workflows/autoclose.yml

@@ -52,7 +52,7 @@ jobs:
       - name: 'Close pull request'
         run: gh pr close "$NUMBER" --comment "$BODY"
         env:
-          GH_TOKEN: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          GH_TOKEN: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           GH_REPO: ${{ github.repository }}
           NUMBER: ${{ github.event.pull_request.number }}
           BODY: |
@@ -88,7 +88,7 @@ jobs:
       - name: 'Close pull request'
         run: gh pr close "$NUMBER" --comment "$BODY"
         env:
-          GH_TOKEN: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          GH_TOKEN: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           GH_REPO: ${{ github.repository }}
           NUMBER: ${{ github.event.pull_request.number }}
           BODY: |
@@ -124,7 +124,7 @@ jobs:
       - name: 'Close pull request'
         run: gh pr close "$NUMBER" --comment "$BODY"
         env:
-          GH_TOKEN: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          GH_TOKEN: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           GH_REPO: ${{ github.repository }}
           NUMBER: ${{ github.event.pull_request.number }}
           BODY: |
@@ -164,7 +164,7 @@ jobs:
       - name: 'Close pull request'
         run: gh pr close "$NUMBER" --comment "$BODY"
         env:
-          GH_TOKEN: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          GH_TOKEN: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           GH_REPO: ${{ github.repository }}
           NUMBER: ${{ github.event.pull_request.number }}
           BODY: |
@@ -176,7 +176,7 @@ jobs:
       - name: 'Lock conversation'
         run: gh pr lock "$NUMBER" --reason spam
         env:
-          GH_TOKEN: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          GH_TOKEN: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           GH_REPO: ${{ github.repository }}
           NUMBER: ${{ github.event.pull_request.number }}
 
@@ -204,7 +204,7 @@ jobs:
       - name: 'Close pull request'
         run: gh pr close "$NUMBER" --comment "$BODY"
         env:
-          GH_TOKEN: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          GH_TOKEN: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           GH_REPO: ${{ github.repository }}
           NUMBER: ${{ github.event.pull_request.number }}
           BODY: |

.github/workflows/check_contributing_guidelines_acceptance.yml

@@ -72,7 +72,7 @@ jobs:
       # Checkout the repository:
       - name: 'Checkout repository'
         # Pin action to full length commit SHA
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # Specify whether to remove untracked files before checking out the repository:
           clean: true
@@ -87,7 +87,7 @@ jobs:
       # Check contributing guidelines acceptance:
       - name: 'Check contributing guidelines acceptance'
         env:
-          GITHUB_TOKEN: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          GITHUB_TOKEN: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           PR_NUMBER: ${{ github.event.pull_request.number || inputs.pull_request_number }}
         run: |
           . "$GITHUB_WORKSPACE/.github/workflows/scripts/check_contributing_guidelines_acceptance" $PR_NUMBER

.github/workflows/check_licenses.yml

@@ -59,7 +59,7 @@ jobs:
       # Checkout the repository:
       - name: 'Checkout repository'
         # Pin action to full length commit SHA
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # Specify whether to remove untracked files before checking out the repository:
           clean: false
@@ -81,7 +81,7 @@ jobs:
       # Install Node.js:
       - name: 'Install Node.js'
         # Pin action to full length commit SHA
-        uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
+        uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
         with:
           node-version: '20' # 'lts/*'
         timeout-minutes: 5
@@ -128,7 +128,7 @@ jobs:
       # Upload the log file:
       - name: 'Upload log file'
         # Pin action to full length commit SHA
-        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
+        uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
         if: always()
         with:
           # Define a name for the uploaded artifact:

.github/workflows/codeql.yml

@@ -93,7 +93,7 @@ jobs:
       # Checkout the repository:
       - name: 'Checkout repository'
         # Pin action to full length commit SHA
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # Specify whether to remove untracked files before checking out the repository:
           clean: false
@@ -121,7 +121,7 @@ jobs:
       # Install Node.js:
       - name: 'Install Node.js'
         # Pin action to full length commit SHA
-        uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
+        uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
         with:
           node-version: '20' # 'lts/*'
         timeout-minutes: 5

.github/workflows/create_address_commit_comment_issues.yml

@@ -0,0 +1,74 @@
+#/
+# @license Apache-2.0
+#
+# Copyright (c) 2025 The Stdlib Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#    http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#/
+
+# Workflow name:
+name: create_address_commit_comment_issues
+
+# Workflow triggers:
+on:
+  # Run the workflow daily at midnight UTC:
+  schedule:
+    - cron: '0 0 * * *'
+
+  # Allow the workflow to be manually run:
+  workflow_dispatch:
+
+# Global permissions:
+permissions:
+  # Allow read-only access to the repository contents:
+  contents: read
+
+# Workflow jobs:
+jobs:
+
+  # Define a job for creating issues from commit comments...
+  create_issues:
+
+    # Define a display name:
+    name: 'Create issues from commit comments'
+
+    # Ensure the job does not run on forks:
+    if: github.repository == 'stdlib-js/stdlib'
+
+    # Define the type of virtual host machine:
+    runs-on: ubuntu-latest
+
+    # Define the sequence of job steps...
+    steps:
+      # Checkout the repository:
+      - name: 'Checkout repository'
+        # Pin action to full length commit SHA
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          # Specify whether to remove untracked files before checking out the repository:
+          clean: false
+
+          # Limit clone depth to the most recent commit:
+          fetch-depth: 1
+
+          # Specify whether to download Git-LFS files:
+          lfs: false
+        timeout-minutes: 10
+
+      # Create issues from commit comments:
+      - name: 'Create issues from commit comments'
+        env:
+          GITHUB_TOKEN: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
+        run: |
+          . "$GITHUB_WORKSPACE/.github/workflows/scripts/create_address_commit_comments_issues" 14
+        timeout-minutes: 15

.github/workflows/generate_pr_commit_message.yml

@@ -60,7 +60,7 @@ jobs:
       # Checkout repository:
       - name: 'Checkout repository'
         # Pin action to full length commit SHA
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # Fetch all commits to ensure we have the full commit history:
           fetch-depth: 0

.github/workflows/git_note_amend_message.yml

@@ -76,7 +76,7 @@ jobs:
       # Checkout the repository:
       - name: 'Checkout repository'
         # Pin action to full length commit SHA
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # Fetch all history to allow creating a Git note for any commit:
           fetch-depth: 0

.github/workflows/git_note_filter_packages.yml

@@ -76,7 +76,7 @@ jobs:
       # Checkout the repository:
       - name: 'Checkout repository'
         # Pin action to full length commit SHA
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # Fetch all history to allow creating a Git note for any commit:
           fetch-depth: 0

.github/workflows/good_first_issue.yml

@@ -52,7 +52,7 @@ jobs:
       - name: 'Add comment'
         run: gh issue comment "$NUMBER" --body "$BODY"
         env:
-          GH_TOKEN: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          GH_TOKEN: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           GH_REPO: ${{ github.repository }}
           NUMBER: ${{ github.event.issue.number }}
           BODY: |

.github/workflows/labeler.yml

@@ -63,15 +63,15 @@ jobs:
         uses: actions/labeler@8558fd74291d67161a8a78ce36a881fa63b766a9 # v5.0.0
         with:
           configuration-path: .github/labeler.yml
-          repo-token: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          repo-token: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
 
       # Add "First-time Contributor" label if PR is from a first-time contributor:
       - name: 'Add "First-time Contributor" label if PR is from a first-time contributor'
         if: ${{ github.event.action == 'opened' || github.event.action == 'reopened' }}
         # Pin action to full-length commit SHA
         uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
         with:
-          github-token: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          github-token: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           script: |
             const { data: pr } = await github.rest.pulls.get({
               'owner': context.repo.owner,
@@ -96,7 +96,7 @@ jobs:
         # Pin action to full length commit SHA
         uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
         with:
-          github-token: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          github-token: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           script: |
             await github.rest.issues.addLabels({
               'owner': context.repo.owner,
@@ -111,7 +111,7 @@ jobs:
         # Pin action to full length commit SHA
         uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
         with:
-          github-token: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          github-token: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           script: |
             await github.rest.issues.addLabels({
               'owner': context.repo.owner,
@@ -126,7 +126,7 @@ jobs:
         # Pin action to full length commit SHA
         uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
         with:
-          github-token: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          github-token: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           script: |
             try {
               await github.rest.issues.removeLabel({
@@ -144,7 +144,7 @@ jobs:
         if: ${{ github.event.action == 'labeled' && github.event.label.name == 'Ready To Merge' }}
         uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
         with:
-          github-token: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          github-token: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           script: |
             const labelsToRemove = [ 'Needs Review', 'Needs Changes' ];
             for ( const label of labelsToRemove ) {
@@ -166,7 +166,7 @@ jobs:
         # Pin action to full length commit SHA
         uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
         with:
-          github-token: ${{ secrets.STDLIB_BOT_FGPAT_PR_WRITE }}
+          github-token: ${{ secrets.STDLIB_BOT_PAT_REPO_WRITE }}
           script: |
             const prAuthor = context.payload.pull_request.user.login;
             const { owner, repo } = context.repo;