From 4a5462557e3278d0944bca2b29e962b7b1de6978 Mon Sep 17 00:00:00 2001
From: Chris Busillo <info@shinycomputers.com>
Date: Wed, 29 Apr 2026 16:49:02 -0400
Subject: [PATCH] chore: expand repo workflow metadata

---
 .github/github-repo-workflow.json | 67 ++++++++++++++++++++++++++++++-
 .gitignore                        |  2 +
 AGENTS.md                         |  4 +-
 3 files changed, 71 insertions(+), 2 deletions(-)

diff --git a/.github/github-repo-workflow.json b/.github/github-repo-workflow.json
index 7bfb23e..2432f89 100644
--- a/.github/github-repo-workflow.json
+++ b/.github/github-repo-workflow.json
@@ -1,5 +1,38 @@
 {
   "defaultBranch": "main",
+  "projectType": "python-package",
+  "docs": {
+    "overview": "README.md",
+    "release": "RELEASE.md",
+    "testing": "tests/README.md",
+    "packageManifest": "pyproject.toml",
+    "lockfile": "uv.lock"
+  },
+  "qualityGate": {
+    "setup": {
+      "default": "uv sync --locked"
+    },
+    "test": {
+      "default": "uv run pytest"
+    },
+    "build": {
+      "package": "uv build",
+      "checkDistribution": "uv run twine check dist/*"
+    },
+    "release": {
+      "verify": "uv sync --locked && uv run pytest && rm -rf dist && uv build && uv run twine check dist/*"
+    },
+    "docsRequiredWhen": [
+      "behavior changes",
+      "api changes",
+      "config changes",
+      "packaging metadata changes",
+      "release workflow changes",
+      "dependency changes",
+      "public import path changes",
+      "upstream compatibility changes"
+    ]
+  },
   "importantWorkflows": ["CI", "Publish"],
   "qaLabels": [],
   "deployLabels": [],
@@ -13,6 +46,38 @@
     "deleteMergedLocalBranches": true,
     "removeMergedCleanWorktrees": true
   },
+  "githubSignals": {
+    "postMerge": {
+      "waitForActions": true,
+      "checkSecurityAndQuality": true
+    },
+    "capabilities": {
+      "codeScanning": "available",
+      "secretScanning": "not_enabled",
+      "dependabotAlerts": "available",
+      "securityAdvisories": "available"
+    },
+    "refreshWhen": [
+      "repo visibility changes",
+      "GitHub plan changes",
+      "security settings change",
+      "token permissions change"
+    ]
+  },
   "relatedRepos": [],
-  "validatedThrough": []
+  "validatedThrough": ["CI", "Publish"],
+  "metadataFreshness": {
+    "updateWhen": [
+      "docs routing changes",
+      "validation gates change",
+      "primary commands change",
+      "important workflows change",
+      "health endpoint changes",
+      "repo relationship changes",
+      "cleanup policy changes",
+      "release workflow changes",
+      "dependency or packaging metadata changes",
+      "public import path changes"
+    ]
+  }
 }
diff --git a/.gitignore b/.gitignore
index c1a96db..d9963c5 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,4 +1,5 @@
 .DS_Store
+.code/
 .venv/
 .pytest_cache/
 __pycache__/
@@ -6,3 +7,4 @@ __pycache__/
 dist/
 build/
 *.egg-info/
+*.override.*
diff --git a/AGENTS.md b/AGENTS.md
index f7d6937..41a644c 100644
--- a/AGENTS.md
+++ b/AGENTS.md
@@ -8,7 +8,9 @@ This repository is maintained as a careful, community-oriented Python client for
 
 - The default branch is `main`.
 - Keep repo workflow defaults in `.github/github-repo-workflow.json` so future
-  GitHub workflow sessions can discover important workflows and cleanup policy.
+  GitHub workflow sessions can discover non-secret repo workflow facts,
+  validation commands, GitHub signal availability, docs routing, important
+  workflows, and cleanup policy.
 - Do not commit directly to `main`.
 - Use a focused branch and pull request for every meaningful change.
 - Keep pull requests small enough to review.