Modernize repo (#29)

* Move contributing docs into .github/ and simplify them

* Remove built docs, already in obvious location in repo

* Align github configuration with other repos

* Replace setup.py/setup.cfg by pyproject.toml

* Switch to src layout

* Rework makefile

* Run 'make format'

* Fix readme

* Fix call to pytest and leverage pytest-cov

* Add missing Github files

* Fix code owners

Author: leplatrem

.github/CODEOWNERS

@@ -0,0 +1 @@
+*        @mozilla-services/syseng-pod

.github/CONTRIBUTING.md

@@ -0,0 +1,52 @@
+How to contribute
+=================
+
+Thanks for your interest in contributing to the python-autograph-utils project!
+
+## Reporting Bugs
+
+Report bugs at https://github.com/mozilla-services/python-autograph-utils/issues/new
+
+If you are reporting a bug, please include:
+
+ - Any details about your local setup that might be helpful in troubleshooting.
+ - Detailed steps to reproduce the bug or even a PR with a failing tests if you can.
+
+
+## Ready to contribute?
+
+### Getting Started
+
+ -  Fork the repo on GitHub and clone locally:
+
+```bash
+git clone git@github.com:mozilla-services/python-autograph-utils.git
+git remote add {your_name} git@github.com:{your_name}/kinto-http.py.git
+```
+
+## Testing
+
+ -  `make test` to run all the tests
+
+## Submitting Changes
+
+```bash
+git checkout main
+git pull origin main
+git checkout -b issue_number-bug-title
+git commit # Your changes
+git push -u {your_name} issue_number-bug-title
+```
+
+Then you can create a Pull-Request.
+Please create your pull-request as soon as you have at least one commit even if it has only failing tests. This will allow us to help and give guidance.
+
+You will be able to update your pull-request by pushing commits to your branch.
+
+
+## Releasing
+
+1. Create a release on Github on https://github.com/mozilla-services/python-autograph-utils/releases/new
+2. Create a new tag `X.Y.Z` (*This tag will be created from the target when you publish this release.*)
+3. Generate release notes
+4. Publish release

.github/SECURITY.md

@@ -0,0 +1,14 @@
+# Security Policy
+
+Mozilla has a [well-defined process for handling security vulnerabilities](https://www.mozilla.org/en-US/about/governance/policies/security-group/bugs/) based around responsible disclosure.
+
+## Supported Versions
+
+| Version | Supported          |
+| ------- | ------------------ |
+| > 1.x   | :white_check_mark: |
+| < 1.0   | :x:                |
+
+## Reporting a Vulnerability
+
+If you believe you have found a Remote Settings related security vulnerability, you should visit the [Mozilla bug bounty program](https://www.mozilla.org/en-US/security/bug-bounty/) for information on how to submit them.

.github/dependabot.yml

@@ -0,0 +1,18 @@
+version: 2
+updates:
+- package-ecosystem: pip
+  directory: "/"
+  schedule:
+    interval: weekly
+  open-pull-requests-limit: 99
+  groups:
+    all-dependencies:
+      update-types: ["minor", "patch"]
+- package-ecosystem: "github-actions"
+  directory: "/"
+  schedule:
+    interval: weekly
+  open-pull-requests-limit: 99
+  groups:
+    all-dependencies:
+      update-types: ["major", "minor", "patch"]

.github/release.yml

@@ -0,0 +1,23 @@
+changelog:
+  exclude:
+    authors:
+      - dependabot
+  categories:
+    - title: Breaking Changes
+      labels:
+        - "breaking-change"
+    - title: Bug Fixes
+      labels:
+        - "bug"
+    - title: New Features
+      labels:
+        - "enhancement"
+    - title: Documentation
+      labels:
+        - "documentation"
+    - title: Dependency Updates
+      labels:
+        - "dependencies"
+    - title: Other Changes
+      labels:
+        - "*"

.github/workflows/labels.yaml

@@ -0,0 +1,14 @@
+name: Force pull-requests label(s)
+
+on:
+  pull_request:
+    types: [opened, labeled, unlabeled]
+jobs:
+  pr-has-label:
+    name: Will be skipped if labelled
+    runs-on: ubuntu-latest
+    if: ${{ join(github.event.pull_request.labels.*.name, ', ') == '' }}
+    steps:
+      - run: |
+          echo 'Pull-request must have at least one label'
+          exit 1

.github/workflows/lint.yml

@@ -0,0 +1,55 @@
+name: Publish Python 🐍 distribution 📦 to PyPI
+
+on:
+  push:
+    tags:
+      - '*'
+
+jobs:
+  build:
+    name: Build distribution 📦
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.x"
+
+      - name: Print environment
+        run: |
+          python --version
+
+      - name: Install pypa/build
+        run: python3 -m pip install build
+
+      - name: Build a binary wheel and a source tarball
+        run: python3 -m build
+
+      - name: Store the distribution packages
+        uses: actions/upload-artifact@v4
+        with:
+          name: python-package-distributions
+          path: dist/
+
+  publish-to-pypi:
+    name: Publish Python 🐍 distribution 📦 to PyPI
+    if: startsWith(github.ref, 'refs/tags/')  # only publish to PyPI on tag pushes
+    needs:
+      - build
+    runs-on: ubuntu-latest
+    environment:
+      name: release
+      url: https://pypi.org/p/autograph-utils
+    permissions:
+      id-token: write
+    steps:
+      - name: Download all the dists
+        uses: actions/download-artifact@v4
+        with:
+          name: python-package-distributions
+          path: dist/
+      - name: Publish distribution 📦 to PyPI
+        uses: pypa/gh-action-pypi-publish@release/v1

.github/workflows/publish.yml

@@ -1,40 +1,37 @@
-on:
-  push:
-    branches:
-      - master
-  pull_request:
+on: pull_request
 
-name: Test
 jobs:
-  chore:
-    name: Run unit tests
+  lint:
+    name: Lint
     runs-on: ubuntu-latest
 
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v4
 
-      - uses: actions/setup-python@v2
+      - uses: actions/setup-python@v5
+
+      - name: Run linting and formatting checks
+        run: make lint
+
+  unit-tests:
+    name: Unit tests
+    runs-on: ubuntu-latest
+    needs: lint
+    strategy:
+      matrix:
+        python-version: ["3.8", "3.9", "3.10", "3.11"]
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Python ${{ matrix.python-version }}
+        uses: actions/setup-python@v5
         with:
-          python-version: "3.x"
-
-      - name: Setup virtualenv
-        run: |
-          pip install -U pip
-          python3 -m venv .venv
-
-      - name: Print environment
-        run: |
-          source .venv/bin/activate
-          python --version
-          pip --version
-
-      - name: Install all dependencies
-        run: |
-          source .venv/bin/activate
-          pip install -r requirements.txt
-          pip install -r requirements_dev.txt
-
-      - name: Test
-        run: |
-          source .venv/bin/activate
-          py.test
+          python-version: ${{ matrix.python-version }}
+          cache: pip
+
+      - name: Install dependencies
+        run: make install
+
+      - name: Run unit tests
+        run: make test