Add CodeQL analysis workflow, SwiftLint configuration, and update README and CHANGELOG

artemisia-absynthium · artemisia-absynthium · commit c709a6153b0f · 2025-09-11T19:03:37.000+02:00
- Introduced CodeQL workflow for security analysis.
- Configured SwiftLint for code linting in Sources and Tests.
- Updated README to reflect CI badge change and usage instructions.
- Added documentation for ShitLib library.
- Updated CHANGELOG for version 6.0.0 with relevant changes.
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -0,0 +1,94 @@
+# For most projects, this workflow file will not need changing; you simply need
+# to commit it to your repository.
+#
+# You may wish to alter this file to override the set of languages analyzed,
+# or to provide custom queries or build logic.
+#
+# ******** NOTE ********
+# We have attempted to detect the languages in your repository. Please check
+# the `language` matrix defined below to confirm you have the correct set of
+# supported CodeQL languages.
+#
+name: "CodeQL Advanced"
+
+on:
+  push:
+    branches: [ "main", "develop" ]
+  pull_request:
+    branches: [ "main", "develop" ]
+  schedule:
+    - cron: '20 5 * * 4'
+
+jobs:
+  analyze:
+    name: Analyze (${{ matrix.language }})
+    # Runner size impacts CodeQL analysis time. To learn more, please see:
+    #   - https://gh.io/recommended-hardware-resources-for-running-codeql
+    #   - https://gh.io/supported-runners-and-hardware-resources
+    #   - https://gh.io/using-larger-runners (GitHub.com only)
+    # Consider using larger runners or machines with greater resources for possible analysis time improvements.
+    runs-on: macos-latest
+    permissions:
+      # required for all workflows
+      security-events: write
+
+      # required to fetch internal or private CodeQL packs
+      packages: read
+
+      # only required for workflows in private repositories
+      actions: read
+      contents: read
+
+    strategy:
+      fail-fast: false
+      matrix:
+        include:
+        - language: actions
+          build-mode: none
+        - language: swift
+          build-mode: manual
+        # CodeQL supports the following values keywords for 'language': 'actions', 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'rust', 'swift'
+        # Use `c-cpp` to analyze code written in C, C++ or both
+        # Use 'java-kotlin' to analyze code written in Java, Kotlin or both
+        # Use 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both
+        # To learn more about changing the languages that are analyzed or customizing the build mode for your analysis,
+        # see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning.
+        # If you are analyzing a compiled language, you can modify the 'build-mode' for that language to customize how
+        # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v5
+
+    # Add any setup steps before running the `github/codeql-action/init` action.
+    # This includes steps like installing compilers or runtimes (`actions/setup-node`
+    # or others). This is typically only required for manual builds.
+    # - name: Setup runtime (example)
+    #   uses: actions/setup-example@v1
+
+    # Initializes the CodeQL tools for scanning.
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v3
+      with:
+        languages: ${{ matrix.language }}
+        build-mode: ${{ matrix.build-mode }}
+        tools: linked
+        # If you wish to specify custom queries, you can do so here or in a config file.
+        # By default, queries listed here will override any specified in a config file.
+        # Prefix the list here with "+" to use these queries and those in the config file.
+
+        # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
+        # queries: security-extended,security-and-quality
+
+    # If the analyze step fails for one of the languages you are analyzing with
+    # "We were unable to automatically build your code", modify the matrix above
+    # to set the build mode to "manual" for that language. Then modify this step
+    # to build your code.
+    # ℹ️ Command-line programs to run using the OS shell.
+    # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
+    - if: matrix.build-mode == 'manual'
+      run: swift build -v
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v3
+      with:
+        category: "/language:${{matrix.language}}"
diff --git a/.github/workflows/swift.yml b/.github/workflows/swift.yml
@@ -1,24 +1,28 @@
-name: Swift
+name: Swift CI
 
 on:
   push:
     branches: [ main, develop ]
   pull_request:
     branches: [ main, develop ]
 
-jobs:
-  build:
+permissions:
+  contents: read
 
+jobs:
+  test-and-coverage:
+    name: Test and Coverage
     runs-on: macos-latest
-
     steps:
     - uses: actions/checkout@v5
-    - name: Build
-      run: swift build -v
+    - uses: maxim-lobanov/setup-xcode@v1
+      with:
+        xcode-version: '26.0-beta'
     - name: Run tests
       run: swift test -v --enable-code-coverage
     - name: Export coverage report as Lcov
-      run: xcrun llvm-cov export -format="lcov" -instr-profile=.build/arm64-apple-macosx/debug/codecov/default.profdata .build/arm64-apple-macosx/debug/ShitLibPackageTests.xctest/Contents/MacOS/ShitLibPackageTests > lcov.info
+      run: xcrun llvm-cov export -format="lcov" -instr-profile=.build/arm64-apple-macosx/debug/codecov/default.profdata .build/arm64-apple-macosx/debug/ArachnePackageTests.xctest/Contents/MacOS/ArachnePackageTests > lcov.info
     - uses: codecov/codecov-action@v5
       with:
+        token: ${{ secrets.CODECOV_TOKEN }}
         files: lcov.info
diff --git a/.github/workflows/swiftlint.yml b/.github/workflows/swiftlint.yml
@@ -0,0 +1,23 @@
+name: SwiftLint
+
+on:
+  push:
+    branches: [ main, develop ]
+  pull_request:
+    branches: [ main, develop ]
+
+permissions:
+  contents: read
+
+jobs:
+  swiftlint:
+    name: SwiftLint
+    runs-on: macos-latest
+    steps:
+    - uses: actions/checkout@v5
+    - name: Install SwiftLint
+      run: brew install swiftlint
+    - name: Lint Sources
+      run: swiftlint lint --strict --working-directory Sources
+    - name: Lint Tests
+      run: swiftlint lint --strict --working-directory Tests
diff --git a/.spi.yml b/.spi.yml
@@ -0,0 +1,4 @@
+version: 1
+builder:
+  configs:
+    - documentation_targets: [ShitLib]
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -4,6 +4,10 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [6.0.0] - 2025-09-11
+### Changed
+- osNull wrapped value must conform to Sendable to comply with Swift 6 rules.
+
 ## [5.0.0] - 2022-02-27
 ### Changed
 - Use standard Swift Package structure to be more lightweight and more Xcode syntax coloring and autocomplete friendly.
@@ -36,6 +40,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Tests with 100% coverage
 - Added support for CocoaPods
 
+[6.0.0]: https://github.com/ShitLib/shitlib-swift/compare/5.0.0...6.0.0
+[5.0.0]: https://github.com/ShitLib/shitlib-swift/compare/4.0.0...5.0.0
 [4.0.0]: https://github.com/ShitLib/shitlib-swift/compare/3.1.0...4.0.0
 [3.1.0]: https://github.com/ShitLib/shitlib-swift/compare/3.0.0...3.1.0
 [3.0.0]: https://github.com/ShitLib/shitlib-swift/compare/2.0.0...3.0.0
diff --git a/README.md b/README.md
@@ -1,6 +1,6 @@
 # ShitLib (oh Shit!)
 
-[![Swift](https://github.com/ShitLib/shitlib-swift/actions/workflows/swift.yml/badge.svg)](https://github.com/ShitLib/shitlib-swift/actions/workflows/swift.yml)
+[![Swift CI](https://github.com/ShitLib/shitlib-swift/actions/workflows/swift.yml/badge.svg)](https://github.com/ShitLib/shitlib-swift/actions/workflows/swift.yml?branch=main)
 [![codecov](https://codecov.io/gh/ShitLib/shitlib-swift/branch/main/graph/badge.svg?token=WqSvdoVifd)](https://codecov.io/gh/ShitLib/shitlib-swift)
 [![Join the chat at https://gitter.im/ShitLib/shitlib-swift](https://badges.gitter.im/ShitLib/shitlib-swift.svg)](https://gitter.im/ShitLib/shitlib-swift?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge)
 
@@ -65,39 +65,19 @@ class MyBeautifulUnconfigurableClass {
 
 ### Swift Package Manager
 
-ShitLib is compatible with [Swift Package Manager](https://swift.org/package-manager). To use it, add the following as a dependency to your `Package.swift` file:
+#### Using Xcode UI
 
-```swift
-.package(url: "https://github.com/ShitLib/shitlib-swift.git", .upToNextMajor(from: "5.0.0"))
-```
-
-### Other package managers
-
-Since version 5.0.0, support for CocoaPods and Carthage has been discontinued, if you need to use them for any reason, you can use version 4.0.0, since the API isn't changed.
-
-<details><summary>CocoaPods</summary>
-<p>
+Go to your Project Settings > Swift Packages and add Arachne by entering `https://github.com/ShitLib/shitlib-swift.git` in the search field.
 
-ShitLib till version 4.0.0 is available through [CocoaPods](http://cocoapods.org). To install it, simply add the following line to your `Podfile`:
+#### Not using Xcode UI
 
-```ruby
-pod 'ShitLib', '~> 4.0'
-```
-
-</p>
-</details>
-
-<details><summary>Carthage</summary>
-<p>
+Add the following as a dependency to your `Package.swift`:
 
-ShitLib till version 4.0.0 is compatible with [Carthage](https://github.com/Carthage/Carthage). To use it, add the following line to your `Cartfile`:
-
-```ruby
-github "ShitLib/shitlib-swift" ~> 4.0.0
+```swift
+.package(url: "https://github.com/ShitLib/shitlib-swift.git", .upToNextMajor(from: "6.0.0"))
 ```
 
-</p>
-</details>
+and then specify "ShitLib" as a dependency of the Target in which you wish to use it.
 
 ## What's new
 
diff --git a/Sources/ShitLib/Documentation.docc/Documentation.md b/Sources/ShitLib/Documentation.docc/Documentation.md
@@ -0,0 +1,56 @@
+# ``ShitLib``
+
+The library that helps you remember about things done bad.
+With ShitLib you will be always aware of the shitty code inside your application.
+
+## Overview
+
+Are you writing unwanted code, antipatterns, magic numbers?
+Are you scared about what you are doing?
+Use ShitLib to refer your shitty code so you will remember it.
+How? Remove ShitLib dependency and your code will not compile anymore until you will remove all of the shitty code.
+
+
+Oh your boss forced you to get the first element of a list and you know that it's wrong: you can use OhShit!
+
+```swift
+import ShitLib
+
+class MyBeautifulClass {
+    let elements: [String] = [**some elements inside**]
+
+    func iDontWantToDoThisButWeMustReleaseASAP() {
+        let element = elements[OhShit.os0] // <--- OhShit Constant
+        doSomeThing(with: element)
+    }
+
+    func doSomeThing(with element: String) {
+        // anything
+    }
+}
+```
+
+Maybe you are thinking where the convenience is in using this lib.
+It's simple, this is the most useful library when it is removed from dependencies.
+After doing that, your project will not compile anymore and you will be immediately aware of what to do.
+Fix it!
+
+Other ways to use ShitLib? Let's give a try to the method API
+
+```swift
+import ShitLib
+
+class MyBeautifulUnconfigurableClass {
+    enum PasswordError: Error {
+        case length(maxLength: Int)
+    }
+
+    let maxPasswordSize: Int = OhShit.ohShit(7)! // I cannot parameterize now
+
+    public func set(password: String) throws {
+        if password.count > maxPasswordSize {
+            throw PasswordError.length(maxLength: maxPasswordSize)
+        }
+    }
+}
+```
