10 changed files with 22 additions and 83 deletions
--- a/.github/workflows/auto-dev-issue.yml
+++ b/.github/workflows/auto-dev-issue.yml
@@ -8,8 +8,8 @@
 # DEFGROUP: GitHub.Workflow
 # INGROUP: MokoStandards.Automation
 # REPO: https://github.com/mokoconsulting-tech/MokoStandards
-# PATH: /templates/workflows/shared/auto-dev-issue.yml
+# PATH: /templates/workflows/shared/auto-dev-issue.yml.template
-# VERSION: 04.04.01
+# VERSION: 04.05.00
 # BRIEF: Auto-create tracking issue when a dev/** or rc/** branch is pushed
 # NOTE: Synced via bulk-repo-sync to .github/workflows/auto-dev-issue.yml in all governed repos.
--- a/.github/workflows/auto-release.yml
+++ b/.github/workflows/auto-release.yml
@@ -6,8 +6,8 @@
 # DEFGROUP: GitHub.Workflow
 # INGROUP: MokoStandards.Release
 # REPO: https://github.com/mokoconsulting-tech/MokoStandards
-# PATH: /templates/workflows/shared/auto-release.yml
+# PATH: /templates/workflows/shared/auto-release.yml.template
-# VERSION: 04.04.01
+# VERSION: 04.05.00
 # BRIEF: Unified build & release pipeline — version branch, platform version, badges, tag, release
 #
 # ╔════════════════════════════════════════════════════════════════════════╗
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -8,8 +8,8 @@
 # DEFGROUP: GitHub.Workflow.Template
 # INGROUP: MokoStandards.Security
 # REPO: https://github.com/mokoconsulting-tech/MokoStandards
-# PATH: /templates/workflows/generic/codeql-analysis.yml
+# PATH: /templates/workflows/generic/codeql-analysis.yml.template
-# VERSION: 04.04.01
+# VERSION: 04.05.00
 # BRIEF: CodeQL security scanning workflow (generic — all repo types)
 # NOTE: Deployed to .github/workflows/codeql-analysis.yml in governed repos.
 #       CodeQL does not support PHP directly; JavaScript scans JSON/YAML/shell.
--- a/.github/workflows/deploy-demo.yml
+++ b/.github/workflows/deploy-demo.yml
@@ -21,8 +21,8 @@
 # DEFGROUP: GitHub.Workflow
 # INGROUP: MokoStandards.Deploy
 # REPO: https://github.com/mokoconsulting-tech/MokoStandards
-# PATH: /templates/workflows/shared/deploy-demo.yml
+# PATH: /templates/workflows/shared/deploy-demo.yml.template
-# VERSION: 04.04.01
+# VERSION: 04.05.00
 # BRIEF: SFTP deployment workflow for demo server — synced to all governed repos
 # NOTE: Synced via bulk-repo-sync to .github/workflows/deploy-demo.yml in all governed repos.
 #       Port is resolved in order: DEMO_FTP_PORT variable → :port suffix in DEMO_FTP_HOST → 22.
--- a/.github/workflows/deploy-dev.yml
+++ b/.github/workflows/deploy-dev.yml
@@ -21,8 +21,8 @@
 # DEFGROUP: GitHub.Workflow
 # INGROUP: MokoStandards.Deploy
 # REPO: https://github.com/mokoconsulting-tech/MokoStandards
-# PATH: /templates/workflows/shared/deploy-dev.yml
+# PATH: /templates/workflows/shared/deploy-dev.yml.template
-# VERSION: 04.04.01
+# VERSION: 04.05.00
 # BRIEF: SFTP deployment workflow for development server — synced to all governed repos
 # NOTE: Synced via bulk-repo-sync to .github/workflows/deploy-dev.yml in all governed repos.
 #       Port is resolved in order: DEV_FTP_PORT variable → :port suffix in DEV_FTP_HOST → 22.
@@ -667,69 +667,8 @@ jobs:
          # Remove temp files that should never be left behind
          rm -f /tmp/deploy_key /tmp/sftp-config.json
-      - name: Create or update failure issue
+      # Dev deploys fail silently — no issue creation.
-        if: failure()
+      # Demo and RS deploys create failure issues (production-facing).
        env:
          GH_TOKEN: ${{ secrets.GH_TOKEN || github.token }}
        run: |
          REPO="${{ github.repository }}"
          RUN_URL="${{ github.server_url }}/${REPO}/actions/runs/${{ github.run_id }}"
          ACTOR="${{ github.actor }}"
          BRANCH="${{ github.ref_name }}"
          EVENT="${{ github.event_name }}"
          NOW=$(date -u '+%Y-%m-%d %H:%M:%S UTC')
          LABEL="deploy-failure"
          TITLE="fix: Dev deployment failed — ${REPO}"
          BODY="## Dev Deployment Failed
          A deployment to the dev server failed and requires attention.
          | Field | Value |
          |-------|-------|
          | **Repository** | \`${REPO}\` |
          | **Branch** | \`${BRANCH}\` |
          | **Trigger** | ${EVENT} |
          | **Actor** | @${ACTOR} |
          | **Failed at** | ${NOW} |
          | **Run** | [View workflow run](${RUN_URL}) |
          ### Next steps
          1. Review the [workflow run log](${RUN_URL}) for the specific error.
          2. Fix the underlying issue (credentials, SFTP connectivity, permissions).
          3. Re-trigger the deployment via **Actions → Deploy to Dev Server → Run workflow**.
          ---
          *Auto-created by deploy-dev.yml — close this issue once the deployment is resolved.*"
          # Ensure the label exists (idempotent — no-op if already present)
          gh label create "$LABEL" \
            --repo "$REPO" \
            --color "CC0000" \
            --description "Automated deploy failure tracking" \
            --force 2>/dev/null || true
          # Look for an existing open deploy-failure issue
          EXISTING=$(gh api "repos/${REPO}/issues?labels=${LABEL}&state=all&per_page=1&sort=created&direction=desc" \
            --jq '.[0].number' 2>/dev/null)
          if [ -n "$EXISTING" ] && [ "$EXISTING" != "null" ]; then
            gh api "repos/${REPO}/issues/${EXISTING}" \
              -X PATCH \
              -f title="$TITLE" \
              -f body="$BODY" \
              -f state="open" \
              --silent
            echo "📋 Failure issue #${EXISTING} updated/reopened: ${REPO}" >> "$GITHUB_STEP_SUMMARY"
          else
            gh issue create \
              --repo "$REPO" \
              --title "$TITLE" \
              --body "$BODY" \
              --label "$LABEL" \
              --assignee "jmiller-moko" \
              | tee -a "$GITHUB_STEP_SUMMARY"
          fi
      - name: Deployment summary
        if: always()
--- a/.github/workflows/deploy-rs.yml
+++ b/.github/workflows/deploy-rs.yml
@@ -21,8 +21,8 @@
 # DEFGROUP: GitHub.Workflow
 # INGROUP: MokoStandards.Deploy
 # REPO: https://github.com/mokoconsulting-tech/MokoStandards
-# PATH: /templates/workflows/shared/deploy-rs.yml
+# PATH: /templates/workflows/shared/deploy-rs.yml.template
-# VERSION: 04.04.01
+# VERSION: 04.05.00
 # BRIEF: SFTP deployment workflow for release staging server — synced to all governed repos
 # NOTE: Synced via bulk-repo-sync to .github/workflows/deploy-rs.yml in all governed repos.
 #       Port is resolved in order: RS_FTP_PORT variable → :port suffix in RS_FTP_HOST → 22.
--- a/.github/workflows/enterprise-firewall-setup.yml
+++ b/.github/workflows/enterprise-firewall-setup.yml
@@ -21,8 +21,8 @@
 # DEFGROUP: GitHub.Workflow
 # INGROUP: MokoStandards.Firewall
 # REPO: https://github.com/mokoconsulting-tech/MokoStandards
-# PATH: /templates/workflows/shared/enterprise-firewall-setup.yml
+# PATH: /templates/workflows/shared/enterprise-firewall-setup.yml.template
-# VERSION: 04.04.01
+# VERSION: 04.05.00
 # BRIEF: Enterprise firewall configuration — generates outbound allow-rules including SFTP deployment server
 # NOTE: Reads DEV_FTP_HOST / DEV_FTP_PORT variables to include SFTP egress rules alongside HTTPS rules.
--- a/.github/workflows/repository-cleanup.yml
+++ b/.github/workflows/repository-cleanup.yml
@@ -8,8 +8,8 @@
 # DEFGROUP: GitHub.Workflow
 # INGROUP: MokoStandards.Maintenance
 # REPO: https://github.com/mokoconsulting-tech/MokoStandards
-# PATH: /templates/workflows/shared/repository-cleanup.yml
+# PATH: /templates/workflows/shared/repository-cleanup.yml.template
-# VERSION: 04.04.01
+# VERSION: 04.05.00
 # BRIEF: Recurring repository maintenance — labels, branches, workflows, logs, doc indexes
 # NOTE: Synced via bulk-repo-sync to .github/workflows/repository-cleanup.yml in all governed repos.
 #       Runs on the 1st and 15th of each month at 6:00 AM UTC, and on manual dispatch.
@@ -266,7 +266,7 @@ jobs:
          GH_TOKEN: ${{ secrets.GH_TOKEN || github.token }}
        run: |
          REPO="${{ github.repository }}"
-          CURRENT="chore/sync-mokostandards-v04.04"
+          CURRENT="chore/sync-mokostandards-v04.05"
          echo "## 🌿 Branch Cleanup" >> $GITHUB_STEP_SUMMARY
          echo "" >> $GITHUB_STEP_SUMMARY
--- a/.github/workflows/standards-compliance.yml
+++ b/.github/workflows/standards-compliance.yml
@@ -5,7 +5,7 @@
 # INGROUP: MokoStandards.Compliance
 # REPO: https://github.com/mokoconsulting-tech/MokoStandards
 # PATH: /.github/workflows/standards-compliance.yml
-# VERSION: 04.04.01
+# VERSION: 04.05.00
 # BRIEF: MokoStandards compliance validation workflow
 # NOTE: Validates repository structure, documentation, and coding standards
--- a/.github/workflows/sync-version-on-merge.yml
+++ b/.github/workflows/sync-version-on-merge.yml
@@ -8,8 +8,8 @@
 # DEFGROUP: GitHub.Workflow
 # INGROUP: MokoStandards.Automation
 # REPO: https://github.com/mokoconsulting-tech/MokoStandards
-# PATH: /templates/workflows/shared/sync-version-on-merge.yml
+# PATH: /templates/workflows/shared/sync-version-on-merge.yml.template
-# VERSION: 04.04.01
+# VERSION: 04.05.00
 # BRIEF: Auto-bump patch version on every push to main and propagate to all file headers
 # NOTE: Synced via bulk-repo-sync to .github/workflows/sync-version-on-merge.yml in all governed repos.
 #       README.md is the single source of truth for the repository version.