Skip to main content

🏭 Automate repository maintenance, releases, and CI/CD workflows

Project description

repomatic

Last release Python versions Downloads Unittests status Coverage status Documentation status

A Python CLI and pyproject.toml configuration that let you release Python packages multiple times a day with only 2-clicks. Designed for uv-based Python projects, but usable for other projects too. The CLI operates through reusable GitHub Actions workflows as its CI delivery mechanism.

Maintainer-in-the-loop: nothing is done behind your back. A PR or issue is created every time a change is proposed or action is needed.

What it automates

  • Version bumping, git tagging, and GitHub release creation
  • Changelog management
  • Python package building and PyPI publishing with supply chain attestations
  • Cross-platform binary compilation (Linux / macOS / Windows, x86_64 / arm64)
  • Formatting autofix for Python, Markdown, JSON, Shell, and typos
  • Linting: Python types with mypy, YAML, GitHub Actions, workflow security, URLs, secrets, and Awesome lists
  • Synchronization of uv.lock, GitHub Action pins, workflow version literals, and repomatic run tool versions with configurable stabilization cooldowns
  • Synchronization of .gitignore, .mailmap, and Mermaid dependency graph
  • Label management with file-based and content-based rules
  • Inactive issue locking
  • Static image optimization
  • Sphinx documentation building, deployment, and autodoc updates
  • Awesome list template synchronization

Why repomatic

  • 18 third-party GitHub Actions replaced by internal CLI commands and SHA-256-verified binary downloads, keeping the supply chain attack surface minimal
  • 8 Python linters and formatters (pylint, black, isort, pyupgrade, pydocstyle, pycln, docformatter, blacken-docs) consolidated into ruff
  • 5 packaging and install tools (poetry, build, twine, check-wheel-contents, pip-audit) consolidated into uv
  • All uses: references pinned to full commit SHAs with stabilization windows before adopting new versions, managed entirely by self-hosted sync jobs
  • SLSA provenance attestations on every release artifact (wheels and compiled binaries)
  • VirusTotal scanning of compiled binaries to seed AV vendor databases and reduce false positives
  • Trusted Publishing for PyPI uploads: no long-lived tokens stored as secrets
  • Immutable releases enforced via GitHub's tag protection and release locking
  • Workflow security linting with zizmor on every push to catch dangerous triggers and excessive permissions
  • Credential scanning with gitleaks to prevent secret leakage
  • Single pyproject.toml configuration: no extra dotfiles, no JSON configs, no YAML presets to maintain
  • 15+ code quality tools (ruff, mypy, biome, typos, mdformat, shfmt, yamllint, actionlint, lychee, oxipng, jpegoptim, pyproject-fmt, labelmaker, gitleaks, zizmor) managed through one repomatic run <tool> interface with automatic installation and platform-specific binary caching

Quick start

$ cd my-project
$ uvx -- repomatic init
$ git add .
$ git commit -m "Add repomatic"
$ git push

Works for new and existing repositories. Managed files are always regenerated to the latest version; changelog.md is never overwritten. Push, and the workflows guide you through remaining setup via issues and PRs.

See repomatic init --help for available components and options.

Documentation

See the full documentation for:

Used in

Check these projects to get real-life examples of usage and inspiration:

Send a PR to add your project if you use repomatic.

Development

See claude.md for development commands, code style, testing guidelines, and design principles.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

repomatic-7.0.0.tar.gz (488.6 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

repomatic-7.0.0-py3-none-any.whl (562.0 kB view details)

Uploaded Python 3

File details

Details for the file repomatic-7.0.0.tar.gz.

File metadata

  • Download URL: repomatic-7.0.0.tar.gz
  • Upload date:
  • Size: 488.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.26 {"installer":{"name":"uv","version":"0.11.26","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for repomatic-7.0.0.tar.gz
Algorithm Hash digest
SHA256 0aded83d63495cd965ef7b89ea1d2892c3eb0d0d4fcb0433dfc69b63eee3321c
MD5 90541dbe85aa01d3c2a7056c40f67f70
BLAKE2b-256 9f94fa2ff9eec069c35b5c25c5a8590415abdbb2fd2f5b47d3c655feb108a7c4

See more details on using hashes here.

Provenance

The following attestation bundles were made for repomatic-7.0.0.tar.gz:

Publisher: release.yaml on kdeldycke/repomatic

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file repomatic-7.0.0-py3-none-any.whl.

File metadata

  • Download URL: repomatic-7.0.0-py3-none-any.whl
  • Upload date:
  • Size: 562.0 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: uv/0.11.26 {"installer":{"name":"uv","version":"0.11.26","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}

File hashes

Hashes for repomatic-7.0.0-py3-none-any.whl
Algorithm Hash digest
SHA256 1130e0ab1285fab993087bc8c224fa367253976211631f54ddf8c3ed3b4deb09
MD5 71c18694aec217d024a9c24230ff5857
BLAKE2b-256 a9282c5c171773aeef5508ea0d66e630c4fd8a4aaa1c09842f94115bbcaa8dca

See more details on using hashes here.

Provenance

The following attestation bundles were made for repomatic-7.0.0-py3-none-any.whl:

Publisher: release.yaml on kdeldycke/repomatic

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page