…127)

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->

## Summary by CodeRabbit

- **New Features**
- Updated configuration to version 2, introducing project metadata with
the name "Web Gallery of Art."
- Enabled size reporting for build artifacts to improve project
insights.
	
- **Bug Fixes**
- Retained essential pre-build installation step for consistent build
processes.

<!-- end of auto-generated comment: release notes by coderabbit.ai -->

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->

## Summary by CodeRabbit

- **New Features**
- Introduced a configuration system for managing license compliance,
allowing users to define accepted and unaccepted licenses.
- Added functionality to ignore specific dependencies from license
checks for enhanced flexibility.
- Implemented control over the execution of license checks based on
dependency modifications and build processes.
  
- **Improvements**
- Enhanced overall management of third-party libraries through tailored
acceptance criteria and behavior settings.

<!-- end of auto-generated comment: release notes by coderabbit.ai -->

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->
## Summary by CodeRabbit


- **New Features**
- Introduced automated security scanning for code repositories using
CodeQL, enhancing security practices.
- Implemented a flexible workflow that supports analysis for multiple
programming languages including Go and JavaScript/TypeScript.

- **Chores**
- Established a scheduled workflow to perform security scanning on a
weekly basis.
- Improved command execution logic in the build script for better
dependency management and more robust build processes.

<!-- end of auto-generated comment: release notes by coderabbit.ai -->

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->

## Summary by CodeRabbit

- **New Features**
- Enhanced CI/CD workflows to include `.templ` files in CodeQL analysis
and Playwright testing triggers.
  
- **Bug Fixes**
- Improved responsiveness of workflows by ensuring relevant file types
are considered during push and pull request events.

<!-- end of auto-generated comment: release notes by coderabbit.ai -->

…l Commit Validation (#134)

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->

## Summary by CodeRabbit

- **New Features**
- Expanded the GitHub Actions workflow to include "build" as a
recognized commit type for validation.
  
- **Chores**
- Improved commit quality and adherence to conventional commit standards
through updated workflow configurations.

<!-- end of auto-generated comment: release notes by coderabbit.ai -->

Bumps [trix](https://github.com/basecamp/trix) from 2.1.3 to 2.1.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/basecamp/trix/releases">trix's
releases</a>.</em></p>
<blockquote>
<h2>v2.1.4</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix XSS vulnerability on paste by <a
href="https://github.com/afcapel"><code>@​afcapel</code></a> in <a
href="https://redirect.github.com/basecamp/trix/pull/1156">basecamp/trix#1156</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/basecamp/trix/compare/2.1.3...v2.1.4">https://github.com/basecamp/trix/compare/2.1.3...v2.1.4</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/basecamp/trix/commit/9579e33ae8542ad67b5c072f38eaf04ab8c5492f"><code>9579e33</code></a>
v2.1.4</li>
<li><a
href="https://github.com/basecamp/trix/commit/7656f578af0d03141a72a9d27cb3692e6947dae6"><code>7656f57</code></a>
Merge pull request <a
href="https://redirect.github.com/basecamp/trix/issues/1156">#1156</a>
from basecamp/paste-vuln</li>
<li><a
href="https://github.com/basecamp/trix/commit/626a4f41d539586c2113d2f76bf029a7fb366cec"><code>626a4f4</code></a>
Support browsers where getHTML is not supported</li>
<li><a
href="https://github.com/basecamp/trix/commit/c8dbd3d5deda2a17e8d76998a84da6adebdf1dcf"><code>c8dbd3d</code></a>
Ensure we always sanitize HTML we set as innerHTML</li>
<li><a
href="https://github.com/basecamp/trix/commit/beabac297c7a29220af2c3247c531d14a6fca971"><code>beabac2</code></a>
Drop defunct bin/release superseded by yarn release</li>
<li><a
href="https://github.com/basecamp/trix/commit/b29b6632184c53f3c9c46f9b3e6be710710de122"><code>b29b663</code></a>
bin/release: upload .map files to release</li>
<li><a
href="https://github.com/basecamp/trix/commit/90c1006d02e76d6cc2830ef662ad5462a58e3679"><code>90c1006</code></a>
bin/release: narrow release files</li>
<li>See full diff in <a
href="https://github.com/basecamp/trix/compare/2.1.3...v2.1.4">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=trix&package-manager=npm_and_yarn&previous-version=2.1.3&new-version=2.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/blackfyre/wga/network/alerts).

</details>

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->

## Summary by CodeRabbit

- **New Features**
- Upgraded the Trix rich text editor to the latest version, which may
enhance performance and introduce new features for a better user
experience.
  
- **Bug Fixes**
- Included minor bug fixes and improvements from the Trix package
update, contributing to a more stable editing environment.

<!-- end of auto-generated comment: release notes by coderabbit.ai -->

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Miklós Galicz <blackfyre@users.noreply.github.com>

Bumps [micromatch](https://github.com/micromatch/micromatch) from 4.0.7
to 4.0.8.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/micromatch/micromatch/releases">micromatch's
releases</a>.</em></p>
<blockquote>
<h2>4.0.8</h2>
<p>Ultimate release that fixes both CVE-2024-4067 and CVE-2024-4068. We
consider the issues low-priority, so even if you see automated scanners
saying otherwise, don't be scared.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md">micromatch's
changelog</a>.</em></p>
<blockquote>
<h2>[4.0.8] - 2024-08-22</h2>
<ul>
<li>backported CVE-2024-4067 fix (from v4.0.6) over to 4.x branch</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/micromatch/micromatch/commit/8bd704ec0d9894693d35da425d827819916be920"><code>8bd704e</code></a>
4.0.8</li>
<li><a
href="https://github.com/micromatch/micromatch/commit/a0e68416a44da10f3e4e30845ab95af4fd286d5a"><code>a0e6841</code></a>
run verb to generate README documentation</li>
<li><a
href="https://github.com/micromatch/micromatch/commit/4ec288484f6e8cccf597ad3d43529c31d0f7a02a"><code>4ec2884</code></a>
Merge branch 'v4' into hauserkristof-feature/v4.0.8</li>
<li><a
href="https://github.com/micromatch/micromatch/commit/03aa8052171e878897eee5d7bb2ae0ae83ec2ade"><code>03aa805</code></a>
Merge pull request <a
href="https://redirect.github.com/micromatch/micromatch/issues/266">#266</a>
from hauserkristof/feature/v4.0.8</li>
<li><a
href="https://github.com/micromatch/micromatch/commit/814f5f70efcd100ca9d29198867812a3d6ab91a8"><code>814f5f7</code></a>
lint</li>
<li><a
href="https://github.com/micromatch/micromatch/commit/67fcce6a1077c2faf5ad0c5f998fa70202cc5dae"><code>67fcce6</code></a>
fix: CHANGELOG about braces &amp; CVE-2024-4068, v4.0.5</li>
<li><a
href="https://github.com/micromatch/micromatch/commit/113f2e3fa7cb30b429eda7c4c38475a8e8ba1b30"><code>113f2e3</code></a>
fix: CVE numbers in CHANGELOG</li>
<li><a
href="https://github.com/micromatch/micromatch/commit/d9dbd9a266686f44afb38da26fe016f96d1ec04f"><code>d9dbd9a</code></a>
feat: updated CHANGELOG</li>
<li><a
href="https://github.com/micromatch/micromatch/commit/2ab13157f416679f54e3a32b1425e184bd16749e"><code>2ab1315</code></a>
fix: use actions/setup-node@v4</li>
<li><a
href="https://github.com/micromatch/micromatch/commit/1406ea38f3e24b29f4d4f46908d5cffcb3e6c4ce"><code>1406ea3</code></a>
feat: rework test to work on macos with node 10,12 and 14</li>
<li>Additional commits viewable in <a
href="https://github.com/micromatch/micromatch/compare/4.0.7...4.0.8">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=micromatch&package-manager=npm_and_yarn&previous-version=4.0.7&new-version=4.0.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/blackfyre/wga/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

This pull request includes a small change to the
`.github/workflows/pr-validation.yml` file. The change updates the
version of the `ytanikin/PRConventionalCommits` action to ensure
compatibility with the latest features and bug fixes.

*
[`.github/workflows/pr-validation.yml`](diffhunk://#diff-04af3c9c96028eebf4fa93d5c67e1fa08255fb7a3682f912ccd5bea1dff5ccd4L12-R12):
Updated `ytanikin/PRConventionalCommits` action from version `1.1.0` to
`1.3.0`.


<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->

## Summary by CodeRabbit

- **Chores**
- Updated the pull request validation workflow to a newer version for
improved performance.
	- Maintained the list of accepted task types for conventional commits.

<!-- end of auto-generated comment: release notes by coderabbit.ai -->

This pull request includes a small change to the `README.md` file. The
change adds a section to display activity analytics for the repository.

*
[`README.md`](diffhunk://#diff-b335630551682c19a781afebcf4d07bf978fb1f8ac04c6bf87428ed5106870f5R9-R12):
Added an "Activity" section with a Repobeats analytics image.

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->

## Summary by CodeRabbit

- **New Features**
- Introduced an "Activity" section in the README.md, featuring an
embedded analytics image for enhanced project visibility.

- **Documentation**
- Updated README.md to include the new section while maintaining
existing content structure.

<!-- end of auto-generated comment: release notes by coderabbit.ai -->

This pull request includes significant changes to the project
configuration by removing Nix-related files and dependencies. The
primary goal is to simplify the development environment setup.

Configuration cleanup:

*
[`.idx/dev.nix`](diffhunk://#diff-f125b5c587e59caaff53b6f8d462794de438d6c035ad281c5beebcabff623d9eL1-L55):
Removed the entire Nix configuration, including packages, environment
variables, and workspace setup.
*
[`flake.nix`](diffhunk://#diff-206b9ce276ab5971a2489d75eb1b12999d4bf3843b7988cbe8d687cfde61dea0L1-L86):
Deleted the flake configuration file, which included inputs, outputs,
and development environment setups.

Other changes:

*
[`.envrc`](diffhunk://#diff-d33e979799a45c7c51752e9c8d96a3e452015d1a40b1e4b6ec6a98e92c4d8430L1):
Removed the use of the `flake` command.

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->
## Summary by CodeRabbit

- **Chores**
- Removed configuration files for development environment setup,
including `.envrc`, `.idx/dev.nix`, and `flake.nix`, streamlining the
project by eliminating unused dependencies and configurations.
- Updated `.gitignore` to include new entries for `devenv` environment
files and modified existing entries for clarity.
- Removed specific VSCode extension recommendations to simplify the
development environment.
- **New Features**
- Introduced `devenv.nix` and `devenv.yaml` for a more accessible
development environment configuration.
- Updated `README.md` to reflect the shift to Devenv, providing clearer
instructions for users.
- **Bug Fixes**
- Adjusted spell-check settings in `.vscode/settings.json` to include
new terms relevant to the project.
- **Updates**
- Updated `go.mod` to reflect changes in dependency versions and
management.
<!-- end of auto-generated comment: release notes by coderabbit.ai -->