feat: Establish project governance and automation with new GitHub workflows, contribution guides, security policy, issue templates, license, and funding.

Author: aaron-fredrick

.github/FUNDING.yml

@@ -0,0 +1 @@
+ko_fi: aaronfredrick

.github/ISSUE_TEMPLATE/bug_report.yml

@@ -0,0 +1,42 @@
+name: Bug Report
+description: Create a report to help us improve the library
+title: "[Bug]: "
+labels: ["bug"]
+body:
+  - type: markdown
+    attributes:
+      value: |
+        Thanks for taking the time to report this! Please provide as much detail as possible.
+  - type: input
+    id: environment
+    attributes:
+      label: Environment
+      description: Python version, OS, OS Version, `aiohttp` version
+      placeholder: Python 3.12, Windows 11, aiohttp 3.9
+    validations:
+      required: true
+  - type: textarea
+    id: description
+    attributes:
+      label: Describe the Bug
+      description: A clear and concise description of what the bug is.
+    validations:
+      required: true
+  - type: textarea
+    id: steps
+    attributes:
+      label: Steps to Reproduce
+      description: Provide a minimal code snippet or steps that reproduce the problem.
+      placeholder: |
+        1. `await api.getBin("my-bin")`
+        2. `await bin.downloadFile("does_not_exist.txt")`
+        3. Exception stacktrace...
+    validations:
+      required: true
+  - type: textarea
+    id: expected
+    attributes:
+      label: Expected Behavior
+      description: A clear and concise description of what you expected to happen.
+    validations:
+      required: true

.github/ISSUE_TEMPLATE/config.yml

@@ -0,0 +1,5 @@
+blank_issues_enabled: false
+contact_links:
+  - name: Ask a Question
+    url: https://github.com/aaron-fredrick/Filebin.py/discussions
+    about: Please ask and answer questions here.

.github/ISSUE_TEMPLATE/feature_request.yml

@@ -0,0 +1,30 @@
+name: Feature Request
+description: Suggest an idea for this project
+title: "[Feature]: "
+labels: ["enhancement"]
+body:
+  - type: markdown
+    attributes:
+      value: |
+        Thanks for taking the time to suggest a feature! Please provide as much detail as possible.
+  - type: textarea
+    id: use_case
+    attributes:
+      label: Use Case
+      description: Explain the problem this feature solves.
+    validations:
+      required: true
+  - type: textarea
+    id: solution
+    attributes:
+      label: Proposed Solution
+      description: Describe how the new feature should work.
+    validations:
+      required: true
+  - type: textarea
+    id: alternatives
+    attributes:
+      label: Alternatives Considered
+      description: Any other approaches or existing workarounds?
+    validations:
+      required: false

.github/workflows/codeql.yml

@@ -0,0 +1,41 @@
+name: "CodeQL"
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+  schedule:
+    - cron: '21 9 * * 2'
+
+jobs:
+  analyze:
+    name: Analyze (${{ matrix.language }})
+    runs-on: 'ubuntu-latest'
+    permissions:
+      security-events: write
+      packages: read
+      actions: read
+      contents: read
+
+    strategy:
+      fail-fast: false
+      matrix:
+        include:
+        - language: python
+          build-mode: none
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v4
+
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v3
+      with:
+        languages: ${{ matrix.language }}
+        build-mode: ${{ matrix.build-mode }}
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v3
+      with:
+        category: "/language:${{matrix.language}}"

.github/workflows/release.yml

@@ -71,6 +71,7 @@ jobs:
 
     permissions:
       id-token: write  # Required for OIDC trusted publishing
+      contents: write  # Required for creating GitHub Releases
 
     steps:
       - name: Download build artifacts
@@ -81,3 +82,8 @@ jobs:
 
       - name: Publish to PyPI (Trusted Publishing)
         uses: pypa/gh-action-pypi-publish@release/v1
+
+      - name: Publish to GitHub Release
+        uses: softprops/action-gh-release@v2
+        with:
+          files: dist/*

CONTRIBUTING.md

@@ -0,0 +1,40 @@
+# Contributing to Filebin.py
+
+First off, thanks for taking the time to contribute! 🎉
+
+## Development Setup
+
+1. **Fork and Clone** the repository.
+2. **Install dependencies** (in a virtual environment):
+   ```bash
+   pip install -e ".[dev]"
+   ```
+
+## Workflow
+
+- **Branching**: Create a feature branch from `main`.
+- **Code Style**: We use `ruff` to enforce code quality and formatting.
+  * Before committing, format and lint your code:
+    ```bash
+    ruff check Filebin/ tests/ --fix
+    ```
+- **Testing**: Ensure all tests pass.
+  * Run offline unit tests:
+    ```bash
+    pytest -m "not network"
+    ```
+  * Run full integration tests (requires network access):
+    ```bash
+    pytest
+    ```
+- **Commit Messages**: Write clear, concise commit messages.
+
+## Pull Requests
+
+1. Submit a PR against the `main` branch.
+2. The CI workflow will automatically run `ruff` and the offline unit tests.
+3. Once the CI passes and the PR is approved, it will be merged.
+
+## Code of Conduct
+
+Please note that this project is released with a Contributor Code of Conduct. By participating in this project you agree to abide by its terms.

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2024 Aaron Fredrick
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -1,10 +1,13 @@
 # Filebin.py
 
-[![PyPI](https://img.shields.io/pypi/v/Filebin.py)](https://pypi.org/project/Filebin.py/)
-[![License](https://img.shields.io/badge/license-MIT-blue.svg)](https://opensource.org/licenses/MIT)
-[![CI](https://github.com/aaron-fredrick/Filebin.py/actions/workflows/ci.yml/badge.svg)](https://github.com/aaron-fredrick/Filebin.py/actions/workflows/ci.yml)
-[![Python](https://img.shields.io/pypi/pyversions/Filebin.py)](https://pypi.org/project/Filebin.py/)
-![Status](https://img.shields.io/badge/status-alpha-orange)
+<div align="center">
+
+[![PyPI status](https://img.shields.io/pypi/v/Filebin.py?style=flat-square)](https://pypi.org/project/Filebin.py/)
+[![CI status](https://github.com/aaron-fredrick/Filebin.py/actions/workflows/ci.yml/badge.svg?style=flat-square)](https://github.com/aaron-fredrick/Filebin.py/actions/workflows/ci.yml)
+[![CodeQL status](https://github.com/aaron-fredrick/Filebin.py/actions/workflows/codeql.yml/badge.svg?style=flat-square)](https://github.com/aaron-fredrick/Filebin.py/actions/workflows/codeql.yml)
+[![License status](https://img.shields.io/badge/license-MIT-blue.svg?style=flat-square)](https://opensource.org/licenses/MIT)
+
+</div>
 
 An async Python library and CLI for [Filebin.net](https://filebin.net) — upload, download, and manage file bins programmatically or from your terminal.
 
@@ -215,3 +218,10 @@ ruff check Filebin/ tests/
 ## License
 
 MIT © [Aaron Fredrick](https://github.com/aaron-fredrick)
+
+---
+
+## 💖 Support the Project
+If you find Filebin.py useful, please consider supporting its development:
+
+[![ko-fi](https://ko-fi.com/img/githubbutton_sm.svg)](https://ko-fi.com/aaronfredrick)

SECURITY.md

@@ -0,0 +1,15 @@
+# Security Policy
+
+## Supported Versions
+
+Currently, the `main` branch and the latest published `v0.x.x` version are supported with security updates.
+
+| Version | Supported          |
+| ------- | ------------------ |
+| v0.1.x  | :white_check_mark: |
+| < 0.1.0 | :x:                |
+
+## Reporting a Vulnerability
+
+Please do not open a public issue. Security vulnerabilities should be reported directly to `Aaron_Fredrick@proton.me`. 
+We will aim to acknowledge receipt of your vulnerability report within 48 hours. If the vulnerability is accepted, we will coordinate a fix and an advisory.