fix: update exclusions.json entries and refine checkout action version in action.yml

Co-authored-by: Copilot <copilot@github.com>

.gitea/ai-review/exclusions.json

@@ -0,0 +1,20 @@
+{
+  "version": "1.0",
+  "exclusions": [
+    {
+      "id": 1,
+      "title": "使用來自非官方來源的自訂 Action 的供應鏈風險",
+      "reason": "列入排除問題"
+    },
+    {
+      "id": 3,
+      "title": "cache-nuget@v0.0.3 釘選到修補版本",
+      "reason": "列入排除問題"
+    },
+    {
+      "id": 4,
+      "title": "action 需要 skip_checkout / skip_cache 兩個 inputs",
+      "reason": "列入排除問題"
+    }
+  ]
+}

.gitea/workflows/master.yaml

@@ -1,10 +1,11 @@
+name: CD
 on:
   push:
     branches:
     - master
 jobs:
   version:
-    name: "CD > 計算版本號"
+    name: 計算版本號
     runs-on: ubuntu
     outputs:
       version: ${{ steps.version.outputs.version }}
@@ -13,7 +14,7 @@ jobs:
       id: version
       uses: https://gitea.jsc.idv.tw/actions/calculate-version@${{ vars.ACTION_CALCULATE_VERSION }}
   release:
-    name: "CD > 發布專案"
+    name: 發布專案
     runs-on: ubuntu
     needs: version
     steps:

.gitea/workflows/review.yaml

@@ -0,0 +1,19 @@
+name: AI
+on:
+  pull_request:
+    types: [opened, synchronize]
+jobs:
+  code-review:
+    name: Code Review
+    runs-on: ubuntu
+    steps:
+    - name: AI Code Review
+      uses: https://gitea.jsc.idv.tw/actions/code-review@${{ vars.ACTION_CODE_REVIEW_VERSION }}
+      with:
+        GEMINI_API_KEY: ${{ secrets.GEMINI_API_KEY }},${{ secrets.GEMINI_API_KEY_1 }},${{ secrets.GEMINI_API_KEY_2 }},${{ secrets.GEMINI_API_KEY_3 }},${{ secrets.GEMINI_API_KEY_4 }},${{ secrets.GEMINI_API_KEY_5 }},${{ secrets.GEMINI_API_KEY_6 }},${{ secrets.GEMINI_API_KEY_7 }},${{ secrets.GEMINI_API_KEY_8 }},${{ secrets.GEMINI_API_KEY_9 }},${{ secrets.GEMINI_API_KEY_10 }},${{ secrets.GEMINI_API_KEY_11 }},${{ secrets.GEMINI_API_KEY_12 }},${{ secrets.GEMINI_API_KEY_13 }},${{ secrets.GEMINI_API_KEY_14 }},${{ secrets.GEMINI_API_KEY_15 }},${{ secrets.GEMINI_API_KEY_16 }},${{ secrets.GEMINI_API_KEY_17 }},${{ secrets.GEMINI_API_KEY_18 }},${{ secrets.GEMINI_API_KEY_19 }}
+        GEMINI_BASE_URL: https://generativelanguage.googleapis.com/v1beta
+        GEMINI_MODEL: ${{ vars.GEMINI_MODEL }}
+    permissions:
+      contents: write
+      pull-requests: write
+      issues: write

action.yml

@@ -1,21 +1,26 @@
 name: 'DOTNET QC'
-description: '品質檢查 NUGET 套件'
+description: '品質檢查 .NET 套件'
 author: 'Jeffery'
-inputs:
-  checkout_version:
-    description: 'checkout 版本'
-    required: true
-  cache_nuget_version:
-    description: 'cache-nuget 版本'
-    required: true
 runs:
   using: 'composite'
   steps:
-  - uses: actions/checkout@${{ inputs.checkout_version }}
+  - name: 取得專案
-  - uses: https://gitea.jsc.idv.tw/actions/cache-nuget@${{ inputs.cache_nuget_version }}
+    uses: actions/checkout@v6
-  - run: dotnet restore
+  - name: 快取 NUGET 套件
+    id: cache-nuget
+    uses: https://gitea.jsc.idv.tw/actions/cache-nuget@v0.0.3
+  - name: 復原專案
+    if: steps.cache-nuget.outputs.cache-hit != 'true'
+    run: |
+      if [[ -f "nuget.config" ]]; then
+        dotnet restore --configfile nuget.config
+      else
+        dotnet restore
+      fi
     shell: bash
-  - run: dotnet build --no-restore
+  - name: 建置專案
+    run: dotnet build --no-restore
     shell: bash
-  - run: dotnet test --no-restore --no-build
+  - name: 測試專案
+    run: dotnet test --no-restore --no-build
     shell: bash