microsoft
diff --git a/‎.flake8‎
Lines changed: 5 additions & 0 deletions b/‎.flake8‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎.github/workflows/broken-links-checker.yml‎
Lines changed: 58 additions & 0 deletions b/‎.github/workflows/broken-links-checker.yml‎
Lines changed: 58 additions & 0 deletions
diff --git a/‎.github/workflows/codeql.yml‎
Lines changed: 44 additions & 0 deletions b/‎.github/workflows/codeql.yml‎
Lines changed: 44 additions & 0 deletions
diff --git a/‎.github/workflows/pylint.yml‎
Lines changed: 37 additions & 0 deletions b/‎.github/workflows/pylint.yml‎
Lines changed: 37 additions & 0 deletions
diff --git a/‎.github/workflows/stale-bot.yml‎
Lines changed: 74 additions & 0 deletions b/‎.github/workflows/stale-bot.yml‎
Lines changed: 74 additions & 0 deletions
diff --git a/‎.github/workflows/telemetry-template-check.yml‎
Lines changed: 34 additions & 0 deletions b/‎.github/workflows/telemetry-template-check.yml‎
Lines changed: 34 additions & 0 deletions
diff --git a/‎.github/workflows/test.yml‎
Lines changed: 69 additions & 0 deletions b/‎.github/workflows/test.yml‎
Lines changed: 69 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 2 additions & 2 deletions b/‎README.md‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎content-gen/docs/AzureAccountSetUp.md‎
Lines changed: 14 additions & 0 deletions b/‎content-gen/docs/AzureAccountSetUp.md‎
Lines changed: 14 additions & 0 deletions
@@ -0,0 +1,5 @@
+[flake8]
+max-line-length = 88
+extend-ignore = E501
+exclude = .venv, frontend
+ignore = E203, W503, G004, G200
@@ -0,0 +1,58 @@
+name: Broken Link Checker
+
+on:
+  pull_request:
+    paths:
+      - '**/*.md'
+  workflow_dispatch:
+
+permissions:
+  contents: read
+  actions: read
+
+jobs:
+  markdown-link-check:
+    name: Check Markdown Broken Links
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout Repo
+        uses: actions/checkout@v6
+        with:
+          fetch-depth: 0
+
+      # For PR : Get only changed markdown files
+      - name: Get changed markdown files (PR only)
+        id: changed-markdown-files
+        if: github.event_name == 'pull_request'
+        uses: tj-actions/changed-files@e0021407031f5be11a464abee9a0776171c79891 # v46
+        with:
+          files: |
+            **/*.md
+
+
+      # For PR: Check broken links only in changed files
+      - name: Check Broken Links in Changed Markdown Files
+        id: lychee-check-pr
+        if: github.event_name == 'pull_request' && steps.changed-markdown-files.outputs.any_changed == 'true'
+        uses: lycheeverse/lychee-action@v2.7.0
+        with:
+          args: >
+            --verbose --no-progress --exclude ^https?://
+            ${{ steps.changed-markdown-files.outputs.all_changed_files }}
+          failIfEmpty: false
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      # For manual trigger: Check all markdown files in repo
+      - name: Check Broken Links in All Markdown Files in Entire Repo (Manual Trigger)
+        id: lychee-check-manual
+        if: github.event_name == 'workflow_dispatch'
+        uses: lycheeverse/lychee-action@v2.7.0
+        with:
+          args: >
+            --verbose --no-progress --exclude ^https?://
+            '**/*.md'
+          failIfEmpty: false
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
@@ -0,0 +1,44 @@
+name: "CodeQL"
+
+on:
+  push:
+    branches: [ "main" ]
+    paths:
+      - '**/*.py'
+      - '.github/workflows/codeql.yml'
+  pull_request:
+    branches: [ "main" ]
+    paths:
+      - '**/*.py'
+      - '.github/workflows/codeql.yml'
+  schedule:
+    - cron: '17 11 * * 0'
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    timeout-minutes: 360
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [ 'python' ]
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v6
+
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v4
+      with:
+        languages: ${{ matrix.language }}
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v4
+      with:
+        category: "/language:${{matrix.language}}"
@@ -0,0 +1,37 @@
+name: PyLint
+
+on: 
+  push:
+    paths:
+      - 'content-gen/src/backend/**/*.py'
+      - 'content-gen/src/backend/requirements*.txt'
+      - '.flake8'
+      - '.github/workflows/pylint.yml'
+
+permissions:
+  contents: read
+  actions: read
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        python-version: ["3.11"]
+    steps:
+      - uses: actions/checkout@v6
+      
+      - name: Set up Python ${{ matrix.python-version }}
+        uses: actions/setup-python@v6
+        with:
+          python-version: ${{ matrix.python-version }}
+      
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install -r content-gen/src/backend/requirements.txt
+          pip install flake8  # Ensure flake8 is installed explicitly
+      
+      - name: Run flake8
+        run: |
+          flake8 --config=.flake8 content-gen/src/backend  # Specify the directory to lint
@@ -0,0 +1,74 @@
+name: "Manage Stale Issues, PRs & Unmerged Branches"
+on:
+  schedule:
+    - cron: '30 1 * * *'  # Runs daily at 1:30 AM UTC
+  workflow_dispatch:  # Allows manual triggering
+permissions:
+  contents: write
+  issues: write
+  pull-requests: write
+jobs:
+  stale:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Mark Stale Issues and PRs
+        uses: actions/stale@v10
+        with:
+          stale-issue-message: "This issue is stale because it has been open 180 days with no activity. Remove stale label or comment, or it will be closed in 30 days."
+          stale-pr-message: "This PR is stale because it has been open 180 days with no activity. Please update or it will be closed in 30 days."
+          days-before-stale: 180
+          days-before-close: 30
+          exempt-issue-labels: "keep"
+          exempt-pr-labels: "keep"
+  cleanup-branches:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Repository
+        uses: actions/checkout@v6
+        with:
+          fetch-depth: 0  # Fetch full history for accurate branch checks
+      - name: Fetch All Branches
+        run: git fetch --all --prune
+      - name: List Merged Branches With No Activity in Last 3 Months
+        run: |
+          echo "Branch Name,Last Commit Date,Committer,Committed In Branch,Action" > merged_branches_report.csv
+          for branch in $(git for-each-ref --format '%(refname:short) %(committerdate:unix)' refs/remotes/origin | awk -v date=$(date -d '3 months ago' +%s) '$2 < date {print $1}'); do
+            if [[ "$branch" != "origin/main" && "$branch" != "origin/dev" && "$branch" != "origin/demo" ]]; then
+              branch_name=${branch#origin/}
+              git fetch origin "$branch_name" || echo "Could not fetch branch: $branch_name"
+              last_commit_date=$(git log -1 --format=%ci "origin/$branch_name" || echo "Unknown")
+              committer_name=$(git log -1 --format=%cn "origin/$branch_name" || echo "Unknown")
+              committed_in_branch=$(git branch -r --contains "origin/$branch_name" | tr -d ' ' | paste -sd "," -)
+              echo "$branch_name,$last_commit_date,$committer_name,$committed_in_branch,Delete" >> merged_branches_report.csv
+            fi
+          done
+      - name: List PR Approved and Merged Branches Older Than 30 Days
+        run: |
+          for branch in $(gh api repos/${{ github.repository }}/pulls --state closed --paginate --jq '.[] | select(.merged_at != null and (.base.ref == "main" or .base.ref == "dev" or .base.ref == "demo")) | select(.merged_at | fromdateiso8601 < (now - 2592000)) | .head.ref'); do
+            git fetch origin "$branch" || echo "Could not fetch branch: $branch"
+            last_commit_date=$(git log -1 --format=%ci origin/$branch || echo "Unknown")
+            committer_name=$(git log -1 --format=%cn origin/$branch || echo "Unknown")
+            committed_in_branch=$(git branch -r --contains "origin/$branch" | tr -d ' ' | paste -sd "," -)
+            echo "$branch,$last_commit_date,$committer_name,$committed_in_branch,Delete" >> merged_branches_report.csv
+          done
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+      - name: List Open PR Branches With No Activity in Last 3 Months
+        run: |
+          for branch in $(gh api repos/${{ github.repository }}/pulls --state open --jq '.[] | select(.base.ref == "main" or .base.ref == "dev" or .base.ref == "demo") | .head.ref'); do
+            git fetch origin "$branch" || echo "Could not fetch branch: $branch"
+            last_commit_date=$(git log -1 --format=%ci origin/$branch || echo "Unknown")
+            committer_name=$(git log -1 --format=%cn origin/$branch || echo "Unknown")
+            if [[ $(date -d "$last_commit_date" +%s) -lt $(date -d '3 months ago' +%s) ]]; then
+              committed_in_branch=$(git branch -r --contains "origin/$branch" | tr -d ' ' | paste -sd "," -)
+              echo "$branch,$last_commit_date,$committer_name,$committed_in_branch,Delete" >> merged_branches_report.csv
+            fi
+          done
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+      - name: Upload CSV Report of Inactive Branches
+        uses: actions/upload-artifact@v6
+        with:
+          name: merged-branches-report
+          path: merged_branches_report.csv
+          retention-days: 30
@@ -0,0 +1,34 @@
+name: validate template property for telemetry
+
+on:
+  pull_request:
+    branches:
+      - main
+    paths:
+      - 'content-gen/azure.yaml'
+
+permissions:
+  contents: read
+  actions: read
+
+jobs:
+  validate-template-property:
+    name: validate-template-property
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v6
+
+      - name: Check for required metadata template line
+        run: |
+          if grep -E '^\s*#\s*template:\s*content-generation@' content-gen/azure.yaml; then
+            echo "ERROR: 'template' line is commented out in content-gen/azure.yaml! Please uncomment template line."
+            exit 1
+          fi
+
+          if ! grep -E '^\s*template:\s*content-generation@' content-gen/azure.yaml; then
+            echo "ERROR: Required 'template' line is missing in content-gen/azure.yaml! Please add template line for telemetry."
+            exit 1
+          fi
+          echo "template line is present and not commented."
@@ -0,0 +1,69 @@
+name: Test Workflow with Coverage
+
+on:
+  push:
+    branches:
+      - main
+      - dev
+    paths:
+      - '**/*.py'
+      - 'content-gen/src/backend/requirements*.txt'
+      - '.github/workflows/test.yml'
+  pull_request:
+    types:
+      - opened
+      - ready_for_review
+      - reopened
+      - synchronize
+    branches:
+      - main
+      - dev
+    paths:
+      - '**/*.py'
+      - 'content-gen/src/backend/requirements*.txt'
+      - '.github/workflows/test.yml'
+
+permissions:
+  contents: read
+  actions: read
+
+jobs:
+  backend_tests:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v6
+
+      - name: Set up Python
+        uses: actions/setup-python@v6
+        with:
+          python-version: "3.11"
+
+      - name: Install Backend Dependencies
+        run: |
+          python -m pip install --upgrade pip
+          pip install -r content-gen/src/backend/requirements.txt
+          pip install pytest-cov
+          pip install pytest-asyncio
+
+      - name: Check if Backend Test Files Exist
+        id: check_backend_tests
+        run: |
+          if [ -z "$(find content-gen/src/tests -type f -name 'test_*.py' 2>/dev/null)" ]; then
+            echo "No backend test files found, skipping backend tests."
+            echo "skip_backend_tests=true" >> $GITHUB_ENV
+          else
+            echo "Backend test files found, running tests."
+            echo "skip_backend_tests=false" >> $GITHUB_ENV
+          fi
+
+      - name: Run Backend Tests with Coverage
+        if: env.skip_backend_tests == 'false'
+        run: |
+          pytest --cov=. --cov-report=term-missing --cov-report=xml ./content-gen/src/tests
+
+      - name: Skip Backend Tests
+        if: env.skip_backend_tests == 'true'
+        run: |
+          echo "Skipping backend tests because no test files were found."
@@ -78,13 +78,13 @@ Follow the quick deploy steps on the deployment guide to deploy this solution to
 <br/>
 
 > ⚠️ **Important: Check Azure OpenAI Quota Availability**
- <br/>To ensure sufficient quota is available in your subscription, please follow [quota check instructions guide](./docs/QuotaCheck.md) before you deploy the solution.
+ <br/>To ensure sufficient quota is available in your subscription, please follow [quota check instructions guide](./content-gen/docs/QuotaCheck.md) before you deploy the solution.
 
 <br/>
 
 ### Prerequisites and costs
 
-To deploy this solution accelerator, ensure you have access to an [Azure subscription](https://azure.microsoft.com/free/) with the necessary permissions to create **resource groups, resources, app registrations, and assign roles at the resource group level**. This should include Contributor role at the subscription level and  Role Based Access Control role on the subscription and/or resource group level. Follow the steps in [Azure Account Set Up](./docs/AzureAccountSetUp.md).
+To deploy this solution accelerator, ensure you have access to an [Azure subscription](https://azure.microsoft.com/free/) with the necessary permissions to create **resource groups, resources, app registrations, and assign roles at the resource group level**. This should include Contributor role at the subscription level and  Role Based Access Control role on the subscription and/or resource group level. Follow the steps in [Azure Account Set Up](./content-gen/docs/AzureAccountSetUp.md).
 
 Check the [Azure Products by Region](https://azure.microsoft.com/en-us/explore/global-infrastructure/products-by-region/?products=all&regions=all) page and select a **region** where the following services are available.
 
 
@@ -0,0 +1,14 @@
+## Azure account setup
+
+1. Sign up for a [free Azure account](https://azure.microsoft.com/free/) and create an Azure Subscription.
+2. Check that you have the necessary permissions:
+    * Your Azure account must have `Microsoft.Authorization/roleAssignments/write` permissions, such as [Role Based Access Control Administrator](https://learn.microsoft.com/azure/role-based-access-control/built-in-roles#role-based-access-control-administrator-preview), [User Access Administrator](https://learn.microsoft.com/azure/role-based-access-control/built-in-roles#user-access-administrator), or [Owner](https://learn.microsoft.com/azure/role-based-access-control/built-in-roles#owner).
+    * Your Azure account also needs `Microsoft.Resources/deployments/write` permissions on the subscription level.
+
+You can view the permissions for your account and subscription by following the steps below:
+- Navigate to the [Azure Portal](https://portal.azure.com/) and click on `Subscriptions` under 'Navigation'
+- Select the subscription you are using for this accelerator from the list.
+    - If you try to search for your subscription and it does not come up, make sure no filters are selected.
+- Select `Access control (IAM)` and you can see the roles that are assigned to your account for this subscription.
+    - If you want to see more information about the roles, you can go to the `Role assignments`
+     tab and search by your account name and then click the role you want to view more information about.