ci: simplify workflow and refactor to src layout

- Simplified CI workflow to test single Python version (3.13) instead of matrix
- Removed linting, type checking, and security scanning from CI pipeline
- Streamlined to essential pytest tests only, removed coverage reporting
- Refactored project structure to use src/ layout pattern
- Moved python_project_deployment/ module to src/python_project_deployment/
- Added pre-commit configuration for local development (ruff, mypy, hooks)
- Minor whitespace cleanup in PR template

This reduces CI complexity and maintenance overhead while adopting the
standard src-based project structure for better package isolation.
Development quality checks are now handled via pre-commit hooks instead
of CI.

Author: Magic-Man-us

.github/pull_request_template.md

@@ -28,7 +28,7 @@ Fixes #(issue number)
 
 - [Brief description of change 1]
 - [Brief description of change 2]
-- [Brief description of change 3] 
+- [Brief description of change 3]
 
 ## Testing
 

.github/workflows/ci.yml

@@ -1,40 +1,22 @@
-name: CI (uv)
+name: CI
 
 on:
   push:
     branches: [ main ]
   pull_request:
     branches: [ main ]
 
-# Cancel redundant runs per-branch/PR
 concurrency:
   group: ci-${{ github.workflow }}-${{ github.ref }}
   cancel-in-progress: true
 
-# Least-privilege for the jobs below
 permissions:
   contents: read
 
 jobs:
-  test:
-    name: Test / Lint / Typecheck (uv)
+  build:
+    name: Build Check
     runs-on: ubuntu-latest
-    # Write perms only where needed
-    permissions:
-      contents: read
-    strategy:
-      fail-fast: false
-      matrix:
-        include:
-          - python-version: "3.11"
-            experimental: false
-          - python-version: "3.12"
-            experimental: false
-          - python-version: "3.13"
-            experimental: false
-          - python-version: "3.14"   # treat 3.14 as experimental so CI doesn't block if it breaks
-            experimental: true
-    continue-on-error: ${{ matrix.experimental }}
 
     steps:
       - name: Checkout
@@ -46,118 +28,10 @@ jobs:
           enable-cache: true
 
       - name: Set up Python
-        run: uv python install ${{ matrix.python-version }}
+        run: uv python install 3.13
 
-      # Ensure dev tools (ruff, mypy, pytest, bandit, safety, pytest-cov) are declared in pyproject dev deps.
-      - name: Sync dependencies
-        run: uv sync --all-extras --dev
+      - name: Run tests
+        run: uv run pytest -v
 
-      - name: Lint (ruff)
-        run: uv run ruff check .
-
-      - name: Typecheck (mypy)
-        run: uv run mypy python_project_deployment
-
-      - name: Tests (pytest)
-        run: uv run pytest --cov --cov-report=xml --cov-report=html
-
-      - name: Dangerous API scan (grep)
-        continue-on-error: true
-        shell: bash
-        run: |
-          set -euo pipefail
-          if grep -rn -E '\beval\(|\bexec\(|pickle\.loads|yaml\.load\(|subprocess\.(Popen|call)\(' python_project_deployment/ tests/ 2>/dev/null | grep -v 'yaml\.load_safe' || true; then
-            echo "⚠️ Potentially dangerous API usage detected. Please review." >&2
-            exit 2
-          fi
-
-      - name: Upload coverage.xml
-        uses: actions/upload-artifact@v5
-        with:
-          name: coverage-${{ matrix.python-version }}
-          path: coverage.xml
-
-      - name: Upload coverage HTML
-        uses: actions/upload-artifact@v5
-        with:
-          name: coverage-html-${{ matrix.python-version }}
-          path: htmlcov
-
-  security:
-    name: Security Scan (Bandit)
-    runs-on: ubuntu-latest
-    needs: test
-    permissions:
-      contents: read
-
-    env:
-      SECURITY_FAIL_LEVEL: MEDIUM
-
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v5
-
-      - name: Install uv
-        uses: astral-sh/setup-uv@v7
-        with:
-          enable-cache: true
-
-      - name: Set up Python
-        run: uv python install 3.11
-
-      - name: Sync dependencies
-        run: uv sync --all-extras --dev
-
-      - name: Run Bandit (JSON)
-        run: |
-          uv run bandit -r python_project_deployment/ -f json -o bandit-report.json || true
-          uv run bandit -r python_project_deployment/ -f txt
-
-      - name: Apply Bandit threshold
-        run: uv run python scripts/security_bandit_check.py
-        continue-on-error: true
-
-      - name: Upload security reports
-        uses: actions/upload-artifact@v5
-        with:
-          name: security-reports
-          path: bandit-report.json
-
-  docs:
-    name: Build Documentation
-    runs-on: ubuntu-latest
-    needs: test
-    permissions:
-      contents: write  # Needed for GitHub Pages deployment
-
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v5
-
-      - name: Install uv
-        uses: astral-sh/setup-uv@v7
-        with:
-          enable-cache: true
-
-      - name: Set up Python
-        run: uv python install 3.11
-
-      - name: Sync dependencies (includes sphinx)
-        run: uv sync --all-extras --dev
-
-      - name: Build documentation
-        run: uv run sphinx-build -b html docs docs/_build/html
-
-      - name: Upload documentation artifacts
-        uses: actions/upload-artifact@v5
-        with:
-          name: documentation
-          path: docs/_build/html
-
-      - name: Deploy to GitHub Pages
-        if: github.ref == 'refs/heads/main' && github.event_name == 'push'
-        uses: peaceiris/actions-gh-pages@v4
-        with:
-          github_token: ${{ secrets.GITHUB_TOKEN }}
-          publish_dir: ./docs/_build/html
-          keep_files: false
+      - name: Build package
+        run: uv build

.pre-commit-config.yaml

@@ -1,3 +1,7 @@
+# Pre-commit configuration for Python Project Deployment
+# See https://pre-commit.com for more information
+# See https://pre-commit.com/hooks.html for more hooks
+
 repos:
   - repo: https://github.com/astral-sh/ruff-pre-commit
     rev: v0.8.4
@@ -9,20 +13,20 @@ repos:
   - repo: https://github.com/pre-commit/pre-commit-hooks
     rev: v5.0.0
     hooks:
-      # Removed trailing-whitespace and end-of-file-fixer to reduce auto-fix noise
+      - id: trailing-whitespace
+      - id: end-of-file-fixer
       - id: check-yaml
-      - id: check-added-large-files
-        args: ['--maxkb=1000']  # Allow up to 1MB files
       - id: check-toml
+      - id: check-merge-conflict
+      - id: mixed-line-ending
 
-  # Commented out Sphinx rebuild hook to avoid documentation build warnings
-  # Uncommatuent if you want docs to rebuild on commit:
-  # - repo: local
-  #   hooks:
-  #     - id: rebuild-docs
-  #       name: Rebuild Sphinx documentation
-  #       entry: bash -c 'uv run sphinx-build -b html docs docs/_build -q'
-  #       language: system
-  #       pass_filenames: false
-  #       stages: [commit]
-  #       files: '^(python_project_deployment/.*\.py|docs/.*\.rst)$'
+  - repo: https://github.com/pre-commit/mirrors-mypy
+    rev: v1.13.0
+    hooks:
+      - id: mypy
+        additional_dependencies:
+          - pydantic>=2.12.3
+          - pydantic-settings>=2.10.0
+          - click>=8.3.0
+          - types-PyYAML
+        args: [--ignore-missing-imports]

CODE_OF_CONDUCT.md

@@ -106,7 +106,7 @@ Violating these terms may lead to a permanent ban.
 ### 4. Permanent Ban
 
 **Community Impact**: Demonstrating a pattern of violation of community
-standards, including sustained inappropriate behavior,  harassment of an
+standards, including sustained inappropriate behavior, harassment of an
 individual, or aggression toward or disparagement of classes of individuals.
 
 **Consequence**: A permanent ban from any sort of public interaction within

Makefile

@@ -1,19 +1,24 @@
 SHELL := /bin/bash
-.PHONY: help install sync test lint type format docs docs-watch docs-clean docs-rebuild precommit clean
+.PHONY: help install sync test quick-test test-cov lint type format check security docs docs-watch docs-clean docs-rebuild precommit clean
 
 help:
-	@echo "Available targets:"
+	@echo "=== Quick Commands (Recommended for Development) ==="
+	@echo "  make quick-test    # run tests FAST (no coverage, no strict checks)"
 	@echo "  make install       # install uv (if missing) and sync dependencies"
-	@echo "  make sync          # uv sync --all-extras"
-	@echo "  make test          # run tests with coverage"
-	@echo "  make lint          # run ruff"
-	@echo "  make type          # run mypy"
-	@echo "  make format        # format with ruff"
-	@echo "  make docs          # build Sphinx docs"
-	@echo "  make docs-watch    # build docs with auto-reload on changes"
-	@echo "  make docs-clean    # remove built docs"
-	@echo "  make docs-rebuild  # clean + rebuild docs"
-	@echo "  make precommit     # install pre-commit hooks"
+	@echo "  make format        # auto-format code with ruff"
+	@echo ""
+	@echo "=== Quality Checks (Optional) ==="
+	@echo "  make test-cov      # run tests with coverage reporting"
+	@echo "  make lint          # check code style with ruff"
+	@echo "  make type          # type check with mypy"
+	@echo "  make security      # run security scans (bandit)"
+	@echo "  make check         # run ALL quality checks"
+	@echo ""
+	@echo "=== Other Commands ==="
+	@echo "  make sync          # sync dependencies with uv"
+	@echo "  make docs          # build Sphinx documentation"
+	@echo "  make docs-watch    # build docs with auto-reload"
+	@echo "  make precommit     # install pre-commit hooks (OPTIONAL)"
 	@echo "  make clean         # remove build artifacts"
 
 install:
@@ -25,8 +30,16 @@ install:
 sync:
 	uv sync --all-extras
 
-test:
-	uv run pytest --cov
+test: quick-test
+	@echo "Tip: Use 'make quick-test' for faster testing without coverage"
+
+quick-test:
+	@echo " Running tests (fast mode, no coverage)..."
+	uv run pytest -v
+
+test-cov:
+	@echo " Running tests with coverage reporting..."
+	uv run pytest --cov --cov-report=term --cov-report=html
 
 lock:
 	uv lock
@@ -35,10 +48,33 @@ lint:
 	uv run ruff check .
 
 type:
-	uv run mypy python_project_deployment
+	uv run mypy src/python_project_deployment
+
+check:
+	@echo " Running all quality checks..."
+	@echo ""
+	@echo " [1/4] Formatting check..."
+	@uv run ruff format --check . || echo "Format issues found - run 'make format' to fix"
+	@echo ""
+	@echo " [2/4] Linting..."
+	@uv run ruff check . || echo "Lint issues found"
+	@echo ""
+	@echo " [3/4] Type checking..."
+	@uv run mypy src/python_project_deployment || echo "Type issues found"
+	@echo ""
+	@echo " [4/4] Running tests..."
+	@uv run pytest -v || echo "Test failures found"
+	@echo ""
+	@echo " Quality check complete!"
+
+security:
+	@echo " Running security scans..."
+	@uv run bandit -r src/python_project_deployment/ || echo "Security issues found"
 
 format:
+	@echo " Auto-formatting code..."
 	uv run ruff format .
+	@echo " Format complete!"
 
 docs:
 	@echo " Building Sphinx documentation..."

docs/generated/python_project_deployment.cli.rst

@@ -2,5 +2,3 @@
 ===============================
 
 .. automodule:: python_project_deployment.cli
-
-   

docs/generated/python_project_deployment.models.rst

@@ -3,10 +3,9 @@
 
 .. automodule:: python_project_deployment.models
 
-   
+
    .. rubric:: Classes
 
    .. autosummary::
-   
+
       ProjectConfig
-   

docs/generated/python_project_deployment.scaffolder.rst

@@ -3,10 +3,9 @@
 
 .. automodule:: python_project_deployment.scaffolder
 
-   
+
    .. rubric:: Classes
 
    .. autosummary::
-   
+
       Scaffolder
-   

pyproject.toml

@@ -58,11 +58,14 @@ Homepage = "https://github.com/Magic-Man-us/PythonProjectDeployment"
 Repository = "https://github.com/Magic-Man-us/PythonProjectDeployment"
 
 [tool.hatch.build.targets.wheel]
-packages = ["python_project_deployment"]
+packages = ["src/python_project_deployment"]
 
 [tool.pytest.ini_options]
 testpaths = ["tests"]
-addopts = "--cov=python_project_deployment --cov-report=term-missing --cov-report=html"
+# Coverage reporting is optional - remove --cov flags for faster test runs
+addopts = "-v"
+# Uncomment below to enable coverage reporting:
+# addopts = "--cov=src/python_project_deployment --cov-report=term-missing --cov-report=html"
 
 [tool.black]
 line-length = 100
@@ -71,7 +74,7 @@ target-version = ['py312']
 [tool.ruff]
 line-length = 100
 target-version = "py312"
-src = ["python_project_deployment", "tests"]
+src = ["src", "tests"]
 
 [tool.ruff.lint]
 select = ["E", "F", "I", "N", "W", "B", "C4"]
@@ -83,9 +86,12 @@ line_length = 100
 
 [tool.mypy]
 python_version = "3.13"
-warn_return_any = true
+warn_return_any = false  # Relaxed: don't warn on Any returns
 warn_unused_configs = true
-disallow_untyped_defs = true
+disallow_untyped_defs = false  # Relaxed: allow untyped functions
+mypy_path = "src"
+# Strict mode disabled for easier development
+# To enable strict type checking, set the above to true
 
 [dependency-groups]
 dev = [