Merge pull request #120 from SmartBear/release/v0.5.0

Release v0.5.0

Author: gingerbenw

.cspell.json

@@ -16,4 +16,3 @@
       "**/dist/**"
     ]
   }
-  

.github/ISSUE_TEMPLATE/bug_report.md

@@ -25,4 +25,4 @@ A clear and concise description of what the bug is.
 ```
 
 ```
-</details>
+</details>

.github/ISSUE_TEMPLATE/feature_request.md

@@ -21,4 +21,4 @@ A clear and concise description of what the problem is. Ex. I'm always frustrate
 <!-- A clear and concise description of any alternative solutions or features you've considered. -->
 
 **Additional context**
-<!--Add any other context about the feature request here.-->
+<!--Add any other context about the feature request here.-->

.github/PULL_REQUEST_TEMPLATE.md

@@ -12,4 +12,4 @@
 
 ## Testing
 
-<!-- How was it tested? -->
+<!-- How was it tested? -->

.github/SUPPORT.md

@@ -6,4 +6,4 @@ Or, if you wish, you can [contact us directly](mailto:bugsnag-support@smartbear.
 ## Bug or Feature Requests
 If you would like to raise a bug or feature request, please do so by creating a [New Issue](https://github.com/SmartBear/smartbear-mcp/issues/new/choose) and selecting bug or feature.
 
-Please note: we cannot promise that we will fulfil all requests
+Please note: we cannot promise that we will fulfil all requests

.github/workflows/docker-build.yml

@@ -0,0 +1,47 @@
+# This workflow tests that Docker builds are successful
+# It validates the Dockerfile and ensures the container can be built
+
+name: Docker Build Test
+
+on:
+  push:
+    branches: [ main, next ]
+  pull_request:
+    branches: [ main, next ]
+  # Allow manual triggering
+  workflow_dispatch:
+
+permissions: read-all
+
+jobs:
+  docker-build:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
+
+      - name: Build Docker image
+        uses: docker/build-push-action@4f58ea79222b3b9dc2c8bbdd6debcef730109a75 # v6.9.0
+        with:
+          context: .
+          push: false
+          tags: mcp/smartbear:test
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+
+  dockerfile-lint:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+
+      - name: Run hadolint Dockerfile linter
+        uses: hadolint/hadolint-action@54c9adbab1582c2ef04b2016b760714a4bfde3cf # v3.1.0
+        with:
+          dockerfile: Dockerfile
+          failure-threshold: warning

.github/workflows/docs-as-code-validation.yaml

@@ -54,4 +54,4 @@ jobs:
                 npx -y ajv-cli validate -s ./docs/schemas/manifest.schema.json -d "$manifest" --spec=draft2020
               fi
             fi
-          done
+          done

.github/workflows/docs-as-code.yaml

@@ -12,7 +12,7 @@ on:
       log_level:
         description: 'Log level: 1=DEBUG, 2=INFO, 3=WARNING, 4=ERROR'
         required: false
-        default: '2' # Set the default log level to INFO 
+        default: '2' # Set the default log level to INFO
 
 permissions: read-all
 
@@ -62,7 +62,7 @@ jobs:
                 npx -y ajv-cli validate -s ./docs/schemas/manifest.schema.json -d "$manifest" --spec=draft2020
               fi
             fi
-          done 
+          done
 
   publish:
     runs-on: ubuntu-latest

.github/workflows/node-ci.yml

@@ -3,7 +3,11 @@
 
 name: Node CI
 
-on: [push]
+on:
+  push:
+    branches: [ main, next ]
+  pull_request:
+    branches: [ main, next ]
 
 permissions: read-all
 

.github/workflows/test.yml

@@ -66,7 +66,7 @@ jobs:
           retention-days: 30
 
       - name: Comment coverage on PR
-        if: github.event_name == 'pull_request' && matrix.node-version == 22
+        if: github.event_name == 'pull_request' && matrix.node-version == 22 && github.event.pull_request.head.repo.full_name == github.repository
         uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
         with:
           script: |
@@ -96,7 +96,8 @@ jobs:
                 .slice(0, limit);
 
               return files;
-            }            // Try to read coverage summary
+            }
+            // Try to read coverage summary
             try {
               const coveragePath = path.join(process.cwd(), 'coverage', 'coverage-summary.json');
 
@@ -183,10 +184,50 @@ jobs:
               });
             }
 
+      - name: Skip PR comment for forks (security)
+        if: github.event.pull_request.head.repo.full_name != github.repository && matrix.node-version == 22
+        run: |
+          echo "ℹ️ Skipping coverage comment for forked PR due to security policy"
+          echo "📊 Coverage report is still generated and available in workflow artifacts"
+          echo "🔒 This prevents potential information disclosure to external contributors"
+
+  pre-commit:
+    name: Pre-commit
+
+    runs-on: ubuntu-latest
+
+    env:
+      PRE_COMMIT_HOME: ${{ github.workspace }}/.pre-commit
+
+    steps:
+      - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8  # v5.0.0
+
+      - name: Cache pre-commit
+        uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809  # v4.2.4
+        with:
+          path: |
+            ${{ env.PRE_COMMIT_HOME }}
+          key: ${{ runner.os }}-pre-commit-${{ hashFiles('.pre-commit-config.yaml') }}
+
+      - name: Set up uv
+        uses: astral-sh/setup-uv@4959332f0f014c5280e7eac8b70c90cb574c9f9b  # v6.6.0
+        with:
+          enable-cache: true
+          cache-suffix: pre-commit
+          cache-dependency-glob: ''
+
+      - name: Install pre-commit
+        run: uv tool install pre-commit
+
+      - name: Run pre-commit
+        run: pre-commit run --show-diff-on-failure --color=always --all-files
+
   test-results:
     if: always()
     runs-on: ubuntu-latest
-    needs: test
+    needs:
+      - test
+      - pre-commit
     steps:
       - name: Check test results
         run: |