chore: add semantic release configuration and dependencies

- Created package.json in libs with devDependencies for semantic release tools.
- Added release.config.js to configure semantic release with conventional commits preset and plugins for commit analysis, release notes generation, git, and GitHub integration.

Author: a-klos

infrastructure/.github/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,15 @@
+Thank you for contributing to the RAG Infrastructure!
+
+- [ ] **PR title**: "type: description"
+    consult the [conventional commits](https://www.conventionalcommits.org/en/v1.0.0/) specification for more information about the title format
+
+
+- [ ] **PR message**: ***Delete this entire checklist*** and replace with
+    - **Description:** a description of the change
+    - **Issue:** the issue # it fixes, if applicable
+    - **Dependencies:** any dependencies required for this change
+
+
+Additional guidelines:
+
+If no one reviews your PR within a few days, please @-mention a-klos.

infrastructure/.github/workflows/semantic-release.yml

@@ -0,0 +1,30 @@
+name: Semantic release workflow
+on:
+  workflow_dispatch
+
+permissions:
+  contents: read # for checkout
+
+jobs:
+  semantic-release:
+    name: semantic-release
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write # to be able to publish a GitHub release
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: "22.13.1"
+      - name: Install dependencies
+        run: npm clean-install
+      - name: Verify the integrity of provenance attestations and registry signatures for installed dependencies
+        run: npm audit signatures
+      - name: Release
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: npx semantic-release

infrastructure/.gitignore

@@ -0,0 +1,159 @@
+**/cr-secret.yaml
+**/customer-values.yaml
+**/auth
+
+**/*.lock.*
+
+auth
+
+.DS_Store
+
+*-values.yaml
+**/mcp.json
+*/terraform.tfstate
+*/Chart.lock
+*.tgz
+*/.terraform/
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+*.tgz
+# Distribution / packaging
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+share/python-wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+MANIFEST
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.nox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*.cover
+*.py,cover
+.hypothesis/
+.pytest_cache/
+cover/
+
+# node modules
+node_modules/
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+local_settings.py
+db.sqlite3
+db.sqlite3-journal
+
+# Flask stuff:
+instance/
+.webassets-cache
+
+# Scrapy stuff:
+.scrapy
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+.pybuilder/
+target/
+
+# Jupyter Notebook
+.ipynb_checkpoints
+
+# IPython
+profile_default/
+ipython_config.py
+
+# pyenv
+#   For a library or package, you might want to ignore these files since the code is
+#   intended to run in multiple environments; otherwise, check them in:
+# .python-version
+
+# pipenv
+#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
+#   However, in case of collaboration, if having platform-specific dependencies or dependencies
+#   having no cross-platform support, pipenv may install dependencies that don't work, or not
+#   install all needed dependencies.
+#Pipfile.lock
+
+# PEP 582; used by e.g. github.com/David-OConnor/pyflow
+__pypackages__/
+
+# Celery stuff
+celerybeat-schedule
+celerybeat.pid
+
+# SageMath parsed files
+*.sage.py
+
+# Environments
+.env
+.venv
+env/
+venv/
+ENV/
+env.bak/
+venv.bak/
+
+# Spyder project settings
+.spyderproject
+.spyproject
+
+# Rope project settings
+.ropeproject
+
+# mkdocs documentation
+/site
+
+# mypy
+.mypy_cache/
+.dmypy.json
+dmypy.json
+
+# Pyre type checker
+.pyre/
+
+# pytype static type analyzer
+.pytype/
+
+# Cython debug symbols
+cython_debug/
+auth

libs/.github/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,21 @@
+Thank you for contributing to the RAG Core Library!
+
+Please ensure your PR meets the following requirements:
+
+- [ ] **PR Title**: Follow the format "type: description"
+
+  - Refer to the [conventional commits](https://www.conventionalcommits.org/en/v1.0.0/) specification for more details.
+
+- [ ] **PR Description**: Replace this checklist with:
+
+  - **Description:** Provide a detailed description of the changes made.
+  - **Issue:** Mention the issue number this PR fixes, if applicable.
+  - **Dependencies:** List any dependencies required for this change.
+
+Additional Guidelines:
+
+- Ensure your code follows established coding conventions
+- Include relevant tests and documentation updates.
+- If no one reviews your PR within a few days, please @-mention a-klos.
+
+Thank you for your contribution!

libs/.github/workflows/lint-and-test.yml

@@ -0,0 +1,75 @@
+name: Lint and test workflow
+
+on:
+    pull_request:
+      branches:
+      - main
+    workflow_dispatch:
+
+jobs:
+  SanitizeBranchName:
+    runs-on: ubuntu-latest
+    outputs:
+      sanitized_ref: ${{ steps.sanitize.outputs.sanitized_ref }}
+    steps:
+      - name: Sanitize Branch Name
+        id: sanitize
+        run: |
+          SANITIZED_REF=$(echo "${GITHUB_HEAD_REF}" | tr '[:upper:]' '[:lower:]' | tr -c 'a-z0-9' '-')
+          SANITIZED_REF=${SANITIZED_REF#-}
+          SANITIZED_REF=${SANITIZED_REF%-}
+          SANITIZED_REF=${SANITIZED_REF:0:63}
+          if [[ -z "$SANITIZED_REF" || "$SANITIZED_REF" =~ ^-+$ ]]; then
+            SANITIZED_REF="tmp-branch"
+          fi
+          echo "::set-output name=sanitized_ref::${SANITIZED_REF}"
+        shell: bash
+        env:
+          GITHUB_HEAD_REF: ${{ github.head_ref }}
+
+  BuildAndLint:
+    name: Build and Lint
+    runs-on: ubuntu-latest
+    needs: [SanitizeBranchName]
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          repository: stackitcloud/rag-core-library
+      - name: Set Docker Image Name
+        run: |
+          echo "RAG_CORE_LIBRARY_LINTING_DOCKER_IMAGE_NAME=rag-core-lib-lint:${{ needs.SanitizeBranchName.outputs.sanitized_ref }}-${{ github.run_number }}" >> $GITHUB_ENV
+        shell: bash
+
+      - name: Build lint image
+        run: |
+          docker build -t "$RAG_CORE_LIBRARY_LINTING_DOCKER_IMAGE_NAME" --build-arg TEST=0 -f Dockerfile .
+
+      - name: Generate lint report
+        run: |
+          docker run --rm "$RAG_CORE_LIBRARY_LINTING_DOCKER_IMAGE_NAME" make lint
+
+  BuildAndTestMatrix:
+    runs-on: ubuntu-latest
+    needs: [SanitizeBranchName]
+    strategy:
+        fail-fast: true
+        matrix:
+            service: [ "rag-core-lib", "rag-core-api", "admin-api-lib", "extractor-api-lib" ]
+    steps:
+        - name: Checkout code
+          uses: actions/checkout@v4
+          with:
+              token: ${{ secrets.GITHUB_TOKEN }}
+              repository: stackitcloud/rag-core-library
+
+        - name: Set Docker Image Name
+          run: echo "TEST_IMAGE_NAME=${{ matrix.service }}-test:${{ needs.SanitizeBranchName.outputs.sanitized_ref }}-${{ github.run_number }}" >> $GITHUB_ENV
+          shell: bash
+
+        - name: Build test image
+          run: docker build -t "$TEST_IMAGE_NAME" --build-arg TEST=1 --build-arg DIRECTORY=${{ matrix.service }} -f Dockerfile .
+
+        - name: Run tests
+          run: docker run --rm "$TEST_IMAGE_NAME" make test

libs/.github/workflows/semantic-release.yml

@@ -0,0 +1,31 @@
+name: Semantic release workflow
+on:
+  workflow_dispatch
+
+permissions:
+  contents: read # for checkout
+
+jobs:
+  semantic-release:
+    name: semantic-release
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write # to be able to publish a GitHub release
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: "22.13.1"
+      - name: Install dependencies
+        run: npm install
+      - name: Verify the integrity of provenance attestations and registry signatures for installed dependencies
+        run: npm audit signatures
+      - name: Release
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: npx semantic-release
+

libs/.gitignore

@@ -0,0 +1,3 @@
+.vscode
+*notes.md
+node_modules/