Merge pull request #41889 from gewarren/publish0724

Merge main into live (manual)

Author: gewarren

.github/policies/label-issues.yml

@@ -6,50 +6,69 @@ resource: repository
 disabled: false
 where:
 configuration:
-  resourceManagementConfiguration:
-    scheduledSearches:
-    - description: Label doc-bug issues with okr-health (scheduled search)
-      frequencies:
-      - hourly:
-          hour: 3
-      filters:
-      - isIssue
-      - isOpen
-      - hasLabel:
-          label: doc-bug
-      - isNotLabeledWith:
-          label: okr-health
-      actions:
-      - addLabel:
-          label: okr-health
-    eventResponderTasks:
-    - if:
-      - payloadType: Pull_Request
-      then:
-      - inPrLabel:
-          label: in-pr
-      description: Add in-pr label to issues
-    - if:
-      - payloadType: Pull_Request
-      then:
-      - labelSync:
-          pattern: okr-
-      - labelSync:
-          pattern: ':checkered_flag: Release'
-      description: Synchronize OKR and release labels from PRs to closing issues
-    - if:
-      - payloadType: Issues
-      - or:
-        - titleContains:
-            pattern: freshness
-            isRegex: False
-        - titleContains:
-            pattern: out( |-)of( |-)date
-            isRegex: True
-        - titleContains:
-            pattern: stale
-            isRegex: False
-      then:
-      - addLabel:
-          label: okr-freshness
-      description: Label issues with okr-freshness (event-based)
+    resourceManagementConfiguration:
+        scheduledSearches:
+            - description: Label doc-bug issues with okr-quality (scheduled search)
+              frequencies:
+                  - hourly:
+                        hour: 3
+              filters:
+                  - isIssue
+                  - isOpen
+                  - hasLabel:
+                        label: doc-bug
+                  - isNotLabeledWith:
+                        label: okr-quality
+              actions:
+                  - addLabel:
+                        label: okr-quality
+
+        eventResponderTasks:
+            - description: Add in-pr label to issues
+              if:
+                  - payloadType: Pull_Request
+              then:
+                  - inPrLabel:
+                        label: in-pr
+
+            - description: Synchronize OKR and release labels from PRs to closing issues
+              if:
+                  - payloadType: Pull_Request
+              then:
+                  - labelSync:
+                        pattern: okr-
+                  - labelSync:
+                        pattern: ":checkered_flag: Release"
+
+            - description: Label issues with okr-freshness (event-based)
+              if:
+                  - payloadType: Issues
+                  - or:
+                        - titleContains:
+                              pattern: freshness
+                              isRegex: False
+                        - titleContains:
+                              pattern: out( |-)of( |-)date
+                              isRegex: True
+                        - titleContains:
+                              pattern: stale
+                              isRegex: False
+              then:
+                  - addLabel:
+                        label: okr-freshness
+
+            - description: Label typo issues
+              if:
+                  - payloadType: Issues
+                  - isAction:
+                        action: Opened
+                  - titleContains:
+                        pattern: (T|t)ypo
+                        isRegex: True
+              then:
+                  - addLabel:
+                        label: doc-bug
+                  - addLabel:
+                        label: help wanted
+                  - addLabel:
+                        label: good first issue

.github/policies/label-prs.yml

@@ -8,82 +8,82 @@ where:
 configuration:
   resourceManagementConfiguration:
     eventResponderTasks:
-    - description: Label community PRs
-      if:
-      - payloadType: Pull_Request
-      - isAction:
-          action: Opened
-      - and:
-        - not:
-            activitySenderHasPermission:
-              permission: Admin
-        - not:
-            activitySenderHasPermission:
-              permission: Write
-        - not:
-            isActivitySender:
-              user: github-actions[bot]
-        - not:
-            isActivitySender:
-              user: github-actions
-        - not:
-            isActivitySender:
-              user: azure-sdk
-        - not:
-            isActivitySender:
-              user: dependabot
-      then:
-      - addLabel:
-          label: community-contribution
+      - description: Label community PRs
+        if:
+          - payloadType: Pull_Request
+          - isAction:
+              action: Opened
+          - and:
+              - not:
+                  activitySenderHasPermission:
+                    permission: Admin
+              - not:
+                  activitySenderHasPermission:
+                    permission: Write
+              - not:
+                  isActivitySender:
+                    user: github-actions[bot]
+              - not:
+                  isActivitySender:
+                    user: github-actions
+              - not:
+                  isActivitySender:
+                    user: azure-sdk
+              - not:
+                  isActivitySender:
+                    user: dependabot
+        then:
+          - addLabel:
+              label: community-contribution
 
-    - description: Label publish PRs from the dotnet-policy-service bot
-      triggerOnOwnActions: true
-      if:
-      - payloadType: Pull_Request
-      - isAction:
-          action: Opened
-      - isActivitySender:
-          user: dotnet-policy-service[bot]
-      - titleContains:
-          pattern: Merge main into live
-          isRegex: False
-      then:
-      - addLabel:
-          label: ':octocat: auto-merge'
+      - description: Label publish PRs from the dotnet-policy-service bot
+        triggerOnOwnActions: true
+        if:
+          - payloadType: Pull_Request
+          - isAction:
+              action: Opened
+          - isActivitySender:
+              user: dotnet-policy-service[bot]
+          - titleContains:
+              pattern: Merge main into live
+              isRegex: False
+        then:
+          - addLabel:
+              label: ":octocat: auto-merge"
 
-    - description: Label PRs from the Azure SDK bot
-      if:
-      - payloadType: Pull_Request
-      - isActivitySender:
-          user: azure-sdk
-      then:
-      - addLabel:
-          label: ':octocat: auto-merge'
+      - description: Label PRs from the Azure SDK bot
+        if:
+          - payloadType: Pull_Request
+          - isActivitySender:
+              user: azure-sdk
+        then:
+          - addLabel:
+              label: ":octocat: auto-merge"
 
-    - description: Label PRs with okr-health
-      if:
-      - payloadType: Pull_Request
-      - or:
-        - titleContains:
-            pattern: build warning
-            isRegex: False
-        - bodyContains:
-            pattern: build warning
-            isRegex: False
-      then:
-      - addLabel:
-          label: okr-health
+      - description: Label PRs with okr-quality
+        if:
+          - payloadType: Pull_Request
+          - or:
+              - titleContains:
+                  pattern: build warning
+                  isRegex: False
+              - bodyContains:
+                  pattern: build warning
+                  isRegex: False
+        then:
+          - addLabel:
+              label: okr-quality
 
-    - description: Label PRs with okr-freshness
-      if:
-      - payloadType: Pull_Request
-      - or:
-        - titleContains:
-            pattern: freshness
-            isRegex: False
-        - bodyContains:
-            pattern: freshness
-            isRegex: False
-      then:
-      - addLabel:
-          label: okr-freshness
+      - description: Label PRs with okr-freshness
+        if:
+          - payloadType: Pull_Request
+          - or:
+              - titleContains:
+                  pattern: freshness
+                  isRegex: False
+              - bodyContains:
+                  pattern: freshness
+                  isRegex: False
+        then:
+          - addLabel:
+              label: okr-freshness

.github/workflows/check-for-build-warnings.yml

@@ -17,7 +17,7 @@ jobs:
         pull-requests: write
     steps:
     - name: Harden Runner
-      uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+      uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
       with:
         egress-policy: audit
 

.github/workflows/clean-repo.yml

@@ -18,7 +18,7 @@ jobs:
 
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
         with:
           egress-policy: audit
 
@@ -27,7 +27,7 @@ jobs:
       # Call clean repo
       - name: Clean repo
         id: clean-repo-step
-        uses: dotnet/docs-tools/cleanrepo/CleanRepo@5e8bcc78465d45a7544bba56509a1a69922b6a5a # main
+        uses: dotnet/docs-tools/cleanrepo@2a815a6c0976e888a49264f513dc230008b4a1f2
         with:
           docfx_directory: '.'
           articles_directory: 'docs'

.github/workflows/dependabot-approve-and-automerge.yml

@@ -11,7 +11,7 @@ jobs:
     if: ${{ github.actor == 'dependabot[bot]' && github.repository_owner == 'dotnet' }}
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
         with:
           egress-policy: audit
 

.github/workflows/dependabot-bot.yml

@@ -26,7 +26,7 @@ jobs:
     # Checkout the repo into the workspace within the VM
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
         with:
           egress-policy: audit
 

.github/workflows/dependency-review.yml

@@ -17,7 +17,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
         with:
           egress-policy: audit
 

.github/workflows/do-not-merge-label-check.yml

@@ -22,7 +22,7 @@ jobs:
         - 'DO NOT MERGE'
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
         with:
           egress-policy: audit
 

.github/workflows/docs-verifier-tryfix.yml

@@ -17,7 +17,7 @@ jobs:
       GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
         with:
           egress-policy: audit
 

.github/workflows/docs-verifier.yml

@@ -10,7 +10,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
+        uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0
         with:
           egress-policy: audit