feat: adds proper structure to automatic bumping PRs

[simzzz]

Description:
Snyk PR titles now automatically add proper conventional type prefixes and appropriate labels.

Related issue(s):

Fixes #3319

Notes for reviewer:
Judging from the closed PR's by Snyk, I have made the assumption that they would always start with [Snyk] in their title and that they would all be a version upgrade or a security upgrade.

Checklist

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[simzzz]

@quiet-node I noticed you add your details when signing off the commit message of Snyk's PR's so I included them to the YAML file. We can further discuss if that's appropriate and think of alternatives if necessary

[github-actions]

Test Results

 19 files   -   8  274 suites   - 116   37m 29s ⏱️ - 38m 53s
615 tests  -   8  608 ✅ + 12  4 💤 ±0  3 ❌  - 20 
667 runs   - 468  660 ✅  - 439  4 💤  - 4  3 ❌  - 25 

For more details on these failures, see this check.

Results for commit 51cbf7b. ± Comparison against base commit 3e057b5.

This pull request removes 8 tests.

"after all" hook in "RPC Server Acceptance Tests" ‑ RPC Server Acceptance Tests "after all" hook in "RPC Server Acceptance Tests"
"before all" hook for "emits an approval event" ‑ RPC Server Acceptance Tests Acceptance tests @erc20 Acceptance Tests HTS token should behave like erc20 transfer from when the token owner is not the zero address when the recipient is not the zero address when the spender has enough allowance "before all" hook for "emits an approval event"
"before all" hook for "reverts" ‑ RPC Server Acceptance Tests Acceptance tests @erc20 Acceptance Tests HTS token should behave like erc20 transfer from when the token owner is not the zero address when the recipient is not the zero address when the spender does not have enough allowance when the token owner has enough balance "before all" hook for "reverts"
"before all" hook for "should execute "eth_getCode" for hts token" ‑ RPC Server Acceptance Tests Acceptance tests @api-batch-2 RPC Server Acceptance Tests eth_getCode "before all" hook for "should execute "eth_getCode" for hts token"
"before all" hook in "@api-batch-2 RPC Server Acceptance Tests" ‑ RPC Server Acceptance Tests Acceptance tests @api-batch-2 RPC Server Acceptance Tests "before all" hook in "@api-batch-2 RPC Server Acceptance Tests"
"before all" hook in "Debug API Test Suite" ‑ RPC Server Acceptance Tests Acceptance tests @api-batch-3 RPC Server Acceptance Tests Debug API Test Suite "before all" hook in "Debug API Test Suite"
"before each" hook for "reverts" ‑ RPC Server Acceptance Tests Acceptance tests @erc20 Acceptance Tests HTS token should behave like erc20 transfer from when the token owner is not the zero address when the recipient is not the zero address when the spender does not have enough allowance "before each" hook for "reverts"
"before each" hook for "should execute "eth_getStorageAt" request against an inactive address (contains no data) and receive a 32-byte-zero-hex string " ‑ RPC Server Acceptance Tests Acceptance tests @api-batch-2 RPC Server Acceptance Tests "before each" hook for "should execute "eth_getStorageAt" request against an inactive address (contains no data) and receive a 32-byte-zero-hex string "

♻️ This comment has been updated with latest results.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 85.62%. Comparing base (3e057b5) to head (51cbf7b).

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3469      +/-   ##
==========================================
- Coverage   86.42%   85.62%   -0.80%     
==========================================
  Files          65       69       +4     
  Lines        4552     4731     +179     
  Branches      979      998      +19     
==========================================
+ Hits         3934     4051     +117     
- Misses        316      396      +80     
+ Partials      302      284      -18     

Flag	Coverage Δ
config-service	95.16% <ø> (ø)
relay	79.55% <ø> (ø)
server	83.60% <ø> (ø)
ws-server	36.31% <ø> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

see 9 files with indirect coverage changes

[quiet-node]

Thanks for getting to this! This definitely helps save time by reducing the need to rebase the PR just to sign off and rename them.

got have a few questions tho

[quiet-node]

Ha this's a clever way to update the PRs.

I might be mistaken, but this isn’t quite what I initially envisioned. I thought Snyk is like a tool integrated into the repo, allowing us to reconfigure the Snyk PRs through their API rather than having to make patch requests to GitHub like this.

Have you confirmed that we can’t reconfigure Snyk through its API? Or maybe we should check with the CI team to ensure this is the only option?

Sorry, this approach feels a bit like a hack to me and I’d expect there to be a more streamlined way to configure the Snyk tool.

[simzzz]

I took a look initially but it seems very limited. It doesn't accept labels and we can pass only static strings with limited variables.

It can work for the title but we won't be able to detect if it's an Upgrade or a Security upgrade which Snyk currently does.
For the labels - we would still need to keep the hack or do them manually.

https://docs.snyk.io/scan-with-snyk/pull-requests/snyk-pull-or-merge-requests/customize-pr-templates/apply-a-custom-pr-template

https://docs.snyk.io/scan-with-snyk/pull-requests/snyk-pull-or-merge-requests/customize-pr-templates/variables-list-and-description

[quiet-node]

Ah, I see.

On a different note, how about we remove Snyk entirely and rely only on dependabot? I haven’t seen Snyk PRs in Mirror Node or Mirror Node Explorer anymore but only by dependa bots.

Would it be worth removing it altogether?
@beeradb @andrewb1269hg @rbarker-dev, what do you think?