Improve CI/CD & format fixes

[tirumerla]

• Fix formatting
• Add pre-commits
• Use Nx for faster builds, lints & tests
• Add release drafter
• Add dependabot config
• Create automated rc & stable releases.

---

Runs CI/CD

• Contains two workflows
  • Every push to master --> Updates RC in all the files --> creates & push signed commits using a svc account --> creates a rc tag --> creates a pre-release draft.
  • Manual trigger of stable workflow --> creates a stable tag --> creates a latest release --> published to @openzeppelin/...
  • There is a release workflow that can be used to trigger a release from any tag manually.

When i configure protected tag for some reason pushing tags fail not sure why.

Once this is merged all the packages will be start publishing to @openzeppelin so we need to update documentation for existing packages to let users know that we are using this going forward or migrate existing packages from defender-*-client to @openzeppelin/defender-*-client

---

FOLLOW UP

• Change all examples to point to @openzeppelin/defender-*-client once the beta version is published.

[zeljkoX]

LGTM

Just tested master(lerna + Nx) with this branch and speed improvements are visible

[socket-security]

New dependency changes detected. Learn more about Socket for GitHub ↗︎

---

👍 No new dependency issues detected in pull request

Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore [email protected] bar@* or ignore all packages with @SocketSecurity ignore-all

Pull request alert summary

Issue	Status
Critical CVE	✅ 0 issues
CVE	✅ 0 issues
Mild CVE	✅ 0 issues
Install scripts	✅ 0 issues
Native code	✅ 0 issues
Bin script shell injection	✅ 0 issues
Unresolved require	✅ 0 issues
Invalid package.json	✅ 0 issues
HTTP dependency	✅ 0 issues
Git dependency	✅ 0 issues
GitHub dependency	✅ 0 issues
Potential typo squat	✅ 0 issues
Known Malware	✅ 0 issues
Telemetry	✅ 0 issues
Protestware/Troll package	✅ 0 issues
AI detected security risk	✅ 0 issues
AI warning	✅ 0 issues

---

📊 Modified Dependency Overview:

➕ Added Package	Capability Access	+/- Transitive Count	Publisher
[email protected]	eval, filesystem, shell, environment	+3	altan-nrwl
[email protected]	environment	+11	nrwl-jason
[email protected]	filesystem, environment	+188	jameshenry

🚮 Removed packages: @ethersproject/[email protected], [email protected], [email protected], [email protected], [email protected], [email protected], [email protected], [email protected], [email protected]

[collins-w]

LGTM. Thanks.

[zeljkoX]

LGTM

Small comment about package versions.

[zeljkoX]

Not sure should we change this as we don't have yet this package published. This would cause examples not to work.

Same applies to other examples.

[tirumerla]

I want to check if we can migrate the existing packages already from defender-*-client to @openzeppelin/ i'm not sure if it's possible

[mok0230]

Thanks for doing all this! Just a couple items to take a look at

[mok0230]

For a release candidate, will this use the next or beta flag (rather than latest)?

If it does use latest, it may cause npm install to cause users to upgrade to a beta version:

package.json

"openzeppelin/defender-admin-client": "^1.44.0",

may use 1.45.0-rc.1 if that were tagged latest. It's possible the -beta overrides this - not sure - but it would be worth checking.

[tirumerla]

All the publishes ( from github actions) uses latest since we are not explicitly specifying --dist-tag with lerna publish

[mok0230]

Thanks for doing all this! Just a couple items to take a look at

[tirumerla]

Thanks for doing all this! Just a couple items to take a look at

Thanks for reviewing the PR. 🙏

[zeljkoX]

Thanks for hard work!

[tirumerla]

Thanks for hard work!

Thanks for reviewing the PR. 🙏🏽